Featured Slideshow

http://conference.hitb.org/hitbsecconf2014kul/

#HITB2014KUL White Paper: Extreme Privilege Escalation on Windows 8/UEFI Systems

Friday, January 30, 2015

Posted by l33tdawg

HITB2014KUL, Microsoft, Windows

0 comment(s)

Authors: Xeno Kovah, Corey Kallenberg, John Butterworth amd Sam Cornwell - The MITRE CorporationPresentation Overview: http://conference.hitb.org/hitbsecconf2014kul/sessions/watching-the-watcher-... read more

#HITB2014KUL White Paper: Using Intel TXT to Attack BIOSes

Friday, January 30, 2015

Posted by l33tdawg

BIOS, HITB2014KUL, Intel

0 comment(s)

GParted Live Now Supports Microsoft's New Filesystem, ReFS

Friday, January 30, 2015

Posted by l33tdawg

Industry News, Linux, Microsoft

0 comment(s)

GParted Live is a small bootable GNU/Linux distribution that has a lot of features and that can be used in operations like creating, reorganizing, and deleting disk partitions on a variety of... read more

Intel wants to banish cables, connectors with new Broadwell chips

Friday, January 30, 2015

Posted by l33tdawg

Hardware, Intel

0 comment(s)

Bring a laptop into the room, and it wirelessly links to your monitors, external hard drive and printer. That's Intel's vision of a wire-free world for PCs with its new Core chips based on the... read more

EMC plans layoffs in wake of weakened outlook

Friday, January 30, 2015

Posted by l33tdawg

EMC, Industry News

0 comment(s)

Storage giant EMC will soon start handing out pink slips as part of a new restructuring effort prompted by a weakened financial outlook.Though it didn't specify how many staffers will be laid off,... read more

Why is a 14-month-old patched Microsoft vulnerability still being exploited?

Submitted by l33tdawg on Wed, 2012-02-08 06:57

http://sophosnews.files.wordpress.com/2012/02/cumulative_numbers.png

Credit: Sophos

The media - and indeed many parts of the security industry - just looove zero-day exploits. They are exciting to report, to research, to block...but interestingly, SophosLabs sees much more malware exploiting patched vulnerabilities.

I know - it's a bit weird. Why would malware authors bother to target a vulnerability for which a patch is already available for download...for free? Surely, it would be a lost cause, a dud, a lemon, a non-starter.

Alas, many people - and companies - don't get around to patching. And I just don't get why. If i cut myself, i put a plaster on it so I don't bleed all over the place. A no-brainer. Isn't patching security vulnerabilities in the same boat?

Source:

Naked Security (Sophos Blog)

Tags:

Microsoft

Security

1609 reads

Contact Us

Hack In The Box

36th Floor, Menara Maxis,
Kuala Lumpur City Centre
50088 Kuala Lumpur
Malaysia

Tel: +603-2615-7299
Fax: +603-2615-0088

Link Exchange

Security Central Forum
Dailyrotation
Astalavista
Go Hacking
XSSed.com
madirish.net
SecurityXploded

Featured Slideshow

#HITB2014KUL White Paper: Extreme Privilege Escalation on Windows 8/UEFI Systems

#HITB2014KUL White Paper: Using Intel TXT to Attack BIOSes

GParted Live Now Supports Microsoft's New Filesystem, ReFS

Intel wants to banish cables, connectors with new Broadwell chips

EMC plans layoffs in wake of weakened outlook

Why is a 14-month-old patched Microsoft vulnerability still being exploited?

Friday, January 30th

Thursday, January 29th

Wednesday, January 28th

Tuesday, January 27th

Friday, January 23rd

Contact Us

Recent comments

Link Exchange

#HITB2014KUL White Paper: Extreme Privilege Escalation on Windows 8/UEFI Systems

#HITB2014KUL White Paper: Using Intel TXT to Attack BIOSes

GParted Live Now Supports Microsoft's New Filesystem, ReFS

Intel wants to banish cables, connectors with new Broadwell chips

EMC plans layoffs in wake of weakened outlook

You are here

Why is a 14-month-old patched Microsoft vulnerability still being exploited?