Fully patched is in the eye of the beholder

At Blackhat you can read between the lines that “fully patched” doesn’t mean you are fully secure.  At any point in time there are any number of updates that vendors are working on.  Some of them are being worked on with a security researcher, some are being worked on because someone found a vuln and it’s popping up in the wild.

These days the bad stuff isn’t just IE.  Isn’t just active X, isn’t just adobe, isn’t just quicktime, isn’t just flash, isn’t just rogue a/v coming in through bad links in google. 

These days I’m using stuff like opendns and blocking urls.  I’m making sure we’re not running as admin. 

But if you say on any given day that “Hey I’m fully patched, I’m secure”…. guess again…

3 Thoughts on “Fully patched is in the eye of the beholder

  1. If you want to be 100% safe enter this for your URL block

    *.*.*

  2. Joe Raby on August 2, 2010 at 10:39 am said:

    ….or just unplug.

  3. There is a very good article from June 2008 on The Register that talks about Web browsers not being able to protect us that is still relevent today.

    http://www.theregister.co.uk/2008/06/23/marginal_browser_security_protections/

Post Navigation