Critical Patches Fend off Microsoft Active Attacks

June 22, 2012

Internet Explorer has long been a vulnerable target to cyber attacks, malware and the like, but Microsoft has just announced a large batch of patches in order to address vulnerabilities across a wide variety of their software offerings. ComputerWorld UK provides a complete breakdown in, “Microsoft Patches 26 Bugs, Warns Users of Active Attacks.”

Giving attention to all of the vulnerabilities, the author reports on what may be the most critical update, the one in need of adoption first. He quotes Andrew Storms, director of security operations at nCircle Security:

‘Certainly, [MS12-036] makes it to the top of the worrisome list,’ said Storms. That update, also rated critical, patches just one vulnerability in the Remote Desktop Protocol (RDP), a Windows component that lets users remotely access a PC or server. RDP is frequently used by corporate help desks, off-site users and IT administrators to manage servers at company data centers and those the enterprise farms out to cloud-based service providers.

Implications for those organizations that use Remote Desktop Protocol in any manner in their infrastructure, but especially in their enterprise SharePoint deployment, are obvious. There is need for concern and quick action in order to plug the security gap. However, it’s also reported that oddly, the updates must be manually downloaded.

The author continues:

All of the patches must be downloaded manually from Microsoft’s Download Center. They’re not served up through the usual Windows Update service or the enterprise-grade Windows Server Update Service (WSUS) software.

It seems that such critical updates, especially for those who use ubiquitous SharePoint, would be made more readily accessible and users would receive prompt notification.

For enterprises that are concerned about their security needs, consider a smart third party solution like Fabasoft Mindbreeze. Smaller and more agile, these companies can devote greater attention to security needs. Additionally, in the interest of being fair, Microsoft is always going to be a target for malware and viruses because of its sheer size. It is truly a huge target. However, adding Fabasoft Mindbreeze Enterprise to an existing SharePoint infrastructure will not only make the whole enterprise more secure, but also more easily accessible.

Read more about the security adherence of Fabasoft Mindbreeze, including relevant ISO standards. Just one example is as follows:

ISO 27001: The ISO standard 27001 is a worldwide recognized standard for the evaluation of the security of IT environments. For customers the certification means the adherence to clearly defined technical and security-based standards regarding all IT and business processes as well as all the company’s confidential information.

Sometimes bigger is not necessarily better, and this is one instance in which it definitely proves true. Move away from Microsoft, the major target of viruses and malware, and move toward a more agile, more secure solution. Fabasoft Mindbreeze Enterprise, and the whole suite of Mindbreeze products, can not only ease your security concerns, but also provide a more satisfying user experience.

Emily Rae Aldridge, June 22, 2012

Comments

Comments are closed.

Search the site
Subscribe to Beyond Search
Feature archive
News archive

Stephen E. Arnold monitors search, content processing, text mining and related topics from his high-tech nerve center in rural Kentucky. He tries to winnow the goose feathers from the giblets. He works with colleagues worldwide to make this Web log useful to those who want to go "beyond search". Contact him at sa [at] arnoldit.com. His Web site with additional information about search is arnoldit.com.