Microsoft Not the Only Technology with Holes -- Redmond Channel Partner

Barney's Blog

Microsoft Not the Only Technology with Holes

Critics love to beat up on Microsoft for its security. But in its defense, Redmond is clearly the biggest and most fun hacker target. It also has a ton of products. So it makes sense that holes will be found and attacks mounted.

Microsoft, at least once a month, discloses (and closes) these holes in a very public way. Meanwhile, the Web has no Patch Tuesday, and consequently its holes can stay open for a long, long time.

In fact, according to security concern Cenzic, some 70 percent of the Web apps it looked at lacked secure communications. Two-thirds of these apps were deemed "easily exploitable." In many cases, there's no system in place or real plan to improve Web security and plug holes. The two biggest vulnerabilities, Cenzic reported, are SQL injections and cross-site scripting.

Posted by Doug Barney on May 14, 2008

Free Webcast! Learn about Password Management Best Practices

Featured

Microsoft Appoints Althoff as New CEO for Commercial Business

Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.
Broadcom Revamps VMware Partner Program Again

Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.
Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.
Windows 365 Cloud Apps Now Available for Public Preview

Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.

RCP Update

Email Address*Country*

Please type the letters/numbers you see above.

Barney's Blog

Microsoft Not the Only Technology with Holes

Featured

Microsoft Appoints Althoff as New CEO for Commercial Business

Broadcom Revamps VMware Partner Program Again

Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

Windows 365 Cloud Apps Now Available for Public Preview

Microsoft Appoints Althoff as New CEO for Commercial Business

Roadblocks in Enterprise AI: Data and Skills Shortfalls Could Cost Millions

MIT Finds Only 1 in 20 AI Investments Translate into ROI

Microsoft To Standardize Online Services Pricing for Volume Licensing

Dynamics 365, Power Platform and Copilot Getting AI Boosts in Wave 2 Update

Microsoft Appoints Althoff as New CEO for Commercial Business

Roadblocks in Enterprise AI: Data and Skills Shortfalls Could Cost Millions

MIT Finds Only 1 in 20 AI Investments Translate into ROI

Microsoft To Standardize Online Services Pricing for Volume Licensing

Dynamics 365, Power Platform and Copilot Getting AI Boosts in Wave 2 Update

Partner Guides

Partner's Guide to the Windows Server 2008 Deadline

Partner's Guide to Office 365 Security Costs

Partner's Guide to UCaaS

Partner's Guide to Starter Workloads in Azure

Partner's Guide to Microsoft's Fiscal Year 2019

FREE WEBCASTS FROM OUR SPONSORS

Coffee Talk | MSP Security Playbook: Threat Detection, Response and Beyond

Coffee Talk | Next-Gen Threat Management: A Unified Approach for MSPs

Veeam Simplified: The Easy Button for MSPs Protecting Microsoft 365

Tech Talk | Stop Buying What You Already Own: The MSP's Guide to Microsoft 365 Optimization

FREE WHITE PAPERS FROM OUR SPONSORS

H1 2025 Threat Landscape Report

The Real Gap in Traditional EDR Security

3 Signs It's Time to Consolidate Your Stack

8 Step MSP Checklist for Getting Started with Security Compliance