The second Tuesday of every month, known as Patch Tuesday, is a day set aside by IT companies to release critical fixes for their products. Last Tuesday, April 17, both Microsoft and Adobe released vital fixes for their products. For Adobe, half a dozen security holes were resolved via the update of the company’s Flash player program. For Microsoft, 65 security vulnerabilities were corrected in Windows and other related software via important updates.
The Microsoft updates affected several of Windows components, some of which includes; Internet Explorer, Office, Microsoft Malware Protection Engine, Microsoft Azure and Microsoft Visual Studio. The flaw found in the Microsoft Protection Engine had been disclosed publicly earlier in the month, and one in which an out-of-band update had been issued about a week ago.
The flaw had been discovered by Google’s Project Zero and they had gone on to report it. The flaw is reported to be very easy to exploits and affects the malware scanning capacity for a range of Microsoft anti-malware products, some of which include Windows Defender, Microsoft Security Essentials, and Microsoft Endpoint Protection, Microsoft has advised users to go ahead and install these updated as fast as they can. But it may be however wise to delay a few days before going ahead to install these updates. This is because issues that have to do with patches may cause systems to continue in an endless reboot loop. This is usually reported and is fixed within a few days following its release. Depending on the version of Windows you are using, it may be challenging to put off automatic updates.
Microsoft has stated that Windows 10 will receive its update automatically. But for previous versions, it is recommended that users turn on their automatic updates. Turning Windows update on and off cannot be easily achieved in Windows 10, although it is not impossible.
For Adobe Flash Player, two critical bugs were fixed via the Flash Player update. Adobe stated that it was not aware of any active exploits targeted against either flaw. However, it is advised that if you do not use Flash for many sites, then it is better you disable or remove the flawed program.
By 2020, Adobe is expected to have completed phased out Flash. But before then, most browsers are already taking practical steps to hobble Flash. This is because it possesses a key security issue. Google Chrome, for example, bundles Flash but prevents it from being visible on others, if not a few popular sites. And this comes only after user approval.
For Mozilla Firefox, users are allowed enable Flash, only on a per-site basis. From the end of 2017 into 2018, Microsoft Edge will require users to give permission to run Flash on many sites on a first visit and will remember user’s preferences when the user returns.
The most recent standalone version of Flash which address bugs is 220.127.116.11 for Chrome OS, Mac, Windows, and Linux. It is advised that since just a few sites require it, users will do better manually hobbling or removing Flash.
Perhaps you work in a legal or law firm and at a loss as to how to perform necessary updates, then you will need the services of a reputable IT support in Lauderdale. This IT support in Lauderdale can help in applying the right patches and ensuring that you stay risk-free.