The associated press is reporting that Microsoft is warning of a vulnerability that isn’t yet patched in their operating system. Details on how to protect yourself can be found in the link above.
The proposed solution from Microsoft involves pushing out a large registry change (that you must assemble yourself) that disables the compromised ActiveX control – that then must be applied to each and every system. ( Read More… )
Most recent comment: David Thomason
It's clear that patching isn't going to fix all our problems. Even in the Verizon 2008 Data Breach Investigations ...
The question of whether or not application whitelisting has an important role in the future of endpoint security is officially over. It does. Not only that, it is clear that legacy blacklist antivirus has lost the ability to provide any protection to endpoints and instead is relegated to an after the fact role geared at detecting infections and cleaning them up. I highlighted many of these trends toward application whitelisting and the changing role of antivirus in my intro to this series of blog posts. More evidence of this trend came yesterday when Symantec announced that they are adding application whitelisting capabilities into new reputation based technology code-named Quorum. The bottom line in all of this is that if you are responsible for the endpoint security of your company’s PCs and you aren’t thinking about how whitelisting changes things, you should start now. ( Read More… )
Most recent comment: Time to Start Over on Desktop Security
[...] Protect – First we must baseline our systems to prevent any new infections [...]
Another kind of fireworks display may take place on the Internet this weekend. There is a large malware campaign targeted for this 4th of July weekend, 2009. CNET reports that computers infected by the Waledac worm are a part of a botnet that will begin distributing spam this weekend intending to get users to click on videos that will infect the PC with the malware and add it to the botnet.
The prevalence of this type of problem is more indicative than ever that blacklisting antivirus simply isn’t up to the task of preventing infection of PCs.
Please use the comment form and leave your thoughts!
In the past couple of months, whitelisting has been in the news through multiple different avenues. We at CoreTrace feel that the raising awareness that blacklist-based antivirus simply can no longer protect PCs is passing a critical point—a point that is going to lead businesses and eventually consumers to a whitelisting model that can prevent infection, not just detect and clean up the infection after the fact. Here is a look at some key news around this area: ( Read More… )
Please use the comment form and leave your thoughts!
This week, CoreTrace announced the latest version of our award-winning application whitelisting product, BOUNCER. In a seemingly unrelated note, Microsoft officially launched the beta version of its free antivirus offering, Microsoft Security Essentials (MSE, previously code-named “Morro”).
Seemingly unrelated, and yet completely related. ( Read More… )
Please use the comment form and leave your thoughts!