This is, of course, a Windows-centric newsletter. That means that sometimes it can be
difficult writing about security issues without picking on Microsoft.
Drive-downloads still mostly affect Internet Explorer, not other browsers,
and Microsoft Office
products are showing cracks in the
foundation.I’ll explain below.
The shock waves caused Microsoft’s decision to quietly install Windows Genuine
Advantage through its security update mechanism are still being felt my
The marketplace for non-Microsoft antivirus packages, security suites, and the
crowded with well-known competitors. contrast, the field of Windows Update alternatives is new and
the players are little-known. Until more reviews have been published major
test labs, I’ll keep bringing you my findings and the comments of Windows users
who are doing their own analyses.
There are products that need major patching this week, but they aren’t all from Microsoft.
We’re so used to Microsoft programs having security implications
if we don’t patch that we forget the many other software programs that can impact our systems.
As I mentioned in my last
column, the Metasploit project has been holding a
Month of Browser Bugs. Every day, a new vulnerability is published, the
majority affecting Internet Explorer.
Releasing these flaws may be fun for Metasploit, but it certainly
isn’t for the rest of us, who are forced to wait
while Microsoft catches up on its patches.
Windows Live Messenger — the successor to MSN Messenger — hit the stands
a week ago on
Wednesday. That was version 8.0.0787. Ancient history.
Less than two days later, Microsoft released a new version, 8.0.0792. Hooo boy.
Here we go again.