Add as a preferred source on Google


Barney's Blog

Blog archive

Last Patch Tuesday More Important Than I Thought

I made short shrift of the last Patch Tuesday, not taking it too seriously since there were only two fixes, and only one of those critical.

Turns out one of the patches was for more interesting and important than I thought. It seems that Microsoft has had a hole in its Server Message Block -- a hole that took seven solid years to fix! The vulnerability can let hackers control an entire network. Security pros have no idea what took so long, and believe that many may have been hacked this way without even knowing it.

I'm pretty happy with how Microsoft patches, and see this as an anomaly. You agree? Thoughts welcome at [email protected].

Posted by Doug Barney on November 13, 2008


Featured

  • Microsoft Dismantles RedVDS Cybercrime Marketplace Linked to $40M in Phishing Fraud

    In a coordinated action spanning the United States and the United Kingdom, Microsoft’s Digital Crimes Unit (DCU) and international law enforcement collaborators have taken down RedVDS, a subscription based cybercrime platform tied to an estimated $40 million in fraud losses in the U.S. since March 2025.

  • Sound Wave Illustration

    CrowdStrike's Acquisition of SGNL Aims to Strengthen Identity Security

    CrowdStrike signs definitive agreement to purchase SGNL, an identity security specialist, in a deal valued at about $740 million.

  • Microsoft Acquires Osmos, Automating Data Engineering inside Fabric

    In a strategic move to reduce time-consuming manual data preparation, Microsoft has acquired Seattle-based startup Osmos, specializing in agentic AI for data engineering.

  • Linux Foundation Unites Major Tech Firms to Launch Agentic AI Foundation

    The Linux Foundation today announced the creation of a new collaborative initiative — the Agentic AI Foundation (AAIF) — bringing together major AI and cloud players such as Microsoft, OpenAI, Anthropic and other major tech companies.

Most   Popular