The US government Cybersecurity and Infrastructure Security Agency (CISA) – an excellent source for keeping up with cyber security vulnerabilities and updates – has issued advisories for a number of products: VMware Releases Security Updates for Aria Operations for Networks | CISA Juniper Networks Releases Security Advisory for Junos OS …
The wrong way to manage security patches…
…let the UK Government scrutinise your security patches before you are allowed to publish them to your vulnerable customers! Sounds like a bad dream. Read on. Security Patches are Important Alarm surrounds a clause in the UK’s Investigatory Powers Act. According to the proposed legislation, tech firms will be mandated …
Continue reading “The wrong way to manage security patches…”
Catching up with the CISA Security Advisories
Whilst I have been away my team have been keeping up with security advisories that have impacted our clients. The vendors are the primary sources for my team but they also use the US government Cybersecurity and Infrastructure Security Agency (CISA) alerts and the Known Exploited Vulnerabilities Catalog. Let’s catch …
Continue reading “Catching up with the CISA Security Advisories”
CISA posts advisories on a range of security patches
Other vendors issue their monthly security and feature patches on or around Microsoft Patch Tuesday – it makes sense to get the updates all done together. The US government Cybersecurity and Infrastructure Security Agency (CISA) – one of my go to cyber security sites – issues regular round-ups of the …
Continue reading “CISA posts advisories on a range of security patches”
How important are patches and updates?
Very. Regular vendor updates to patch software flaws that could be or are being exploited by threat actors – such as Microsoft’s Patch Tuesday – are essential to everyone’s cyber security. Google is going to issue updates for its Chrome browser weekly. Google to fight hackers with weekly Chrome security …
