Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Microsoft's first security update of the New Year should be relatively simple for administrators, with the software giant prepping just two patches to close three vulnerabilities.One of the fixes is rated "critical" and corrects at least one vulnerability in all supported versions of Windows. The other bulletin earned an "important" designation and plugs at least one flaw in Vista.Administrators will not see patches for two, publicly known vulnerabilities – one in Internet Explorer (IE), announced in late December, and the second in the Windows Graphics Rendering Engine, disclosed earlier this week.But Wolfgang Kandek, CTO of vulnerability management firm Qualys, said Microsoft customers should not wait until those issues are patched to take action. "Both flaws are reportedly used in targeted attacks and users should look at the mitigation steps outlined in the advisories [here and here]," Kandek said. Microsoft so far only has confirmed active attacks targeting the IE flaw.See original article on scmagazineus.com
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.