Cybersecurity Starts in the Boardroom
It comes round every month – make sure your team has updated. Here is a link to Lawrence Abrams’ excellent roundup of the updates and patches from Microsoft at Bleeping Computer. It includes details of the zero-day vulnerabilities patched: Microsoft November 2022 Patch Tuesday fixes 6 exploited zero-days, 68 flaws …
So, everyone knows what that means, for the users, slow internet connections as we all gather in those vital updates, for the administrators, checking what needs to be done and checking that it has happened – including checking that the users have not skipped the updates because they are too …
Continue reading “Yesterday was Patch Tuesday for Microsoft”
Before I start this post – remember you should have Windows updates set to automatic (we do make exceptions for some Windows servers) and you should be able to monitor the update status on all your organisation’s computers. You cannot check whether everyone has updated? Then do something about it …
The Equation Editor vulnerability in Microsoft Office was fixed back in 2017 but SANS recently found a new phishing email using it in the wild. It really highlights why updates and patches are so important – especially when you are using older software. Have a look at the ingenuity used …
