Tomorrow Microsoft will release an operating system patch that represents the largest number of system fixes in Microsoft history. PCWorld gave the details in a post updated yesterday:
Microsoft says it will deliver its largest-ever number of security updates on Tuesday to fix flaws in every version of Windows, as well as Internet Explorer (IE), Office, SQL Server, important developer tools and the enterprise-grade Forefront Security client software.
Among the updates will be the first for the final, or release to manufacturing, code of Windows 7, Microsoft’s newest operating system.
The company will ship a total of 13 updates next week, eight of them pegged “critical,” the highest threat ranking in its four-step scoring system, beating the previous record of 12 updates shipped in February 2007 and again in October 2008.
Still unknown is whether this patch will fix the critical SMB2 problem that I referenced in last week’s September Endpoint Security Stories post.
What is ironic is that we are setting records for security patches when Microsoft has made such a large deal about the enhancements of security in Vista and soon to be released Windows 7. Identity theft is at an all time high, botnet infections are rampant, all in all online crime has never been more organized and the individual endpoint is the lynchpin of online criminals arsenal.
The reality is that endpoint security has never been worse. Patching and blacklist antivirus solutions are broken. Gartner and many others have repeatedly called for starting over on desktop security. We agree and we believe that application whitelisting is absolutely critical in a transition to a more rational approach to securing the endpoint.
There are currently two main obstacles that must be addressed for whitelisting to become more prevalent. First, a solution must not require a clean initial system and it should not disrupt operations when it is deployed. Second, there needs to be a process that allows users to make application updates and system changes both without involving IT and without putting their system at risk. Bouncer addresses both. We encourage organizations to reexamine their approach to desktop security and look at how application whitelisting can help them start over.
[...] Microsoft prepares for biggest patch Tuesday Ever – Endpoint security has never been worse [...]