It’s a light patch Tuesday from Microsoft, but with mobile malware coming to the fore, businesses have some new threats to contend with.
Alan Bentley, SVP International at Lumension, commented: “Microsoft might be light on patches this month, but the short bulletin doesn’t mean respite for businesses. This month we’re going to see three patches address vulnerabilities that leave users open to remote code execution, two address flaws in Windows 7 and Windows Server 2008 R2 Service Pack 1, and one for Office. But despite the clean up, there’s nothing to suggest we’re going to see a patch to address the recently exposed Internet Explorer zero day vulnerability.
“Although it might be a quieter month for Microsoft, Apple on the other hand has been busy, having released a patch to address over 50 flaws with iTunes. This vulnerability impacts Apple’s own products as well as Windows products. Mobile security is also coming into play. ‘DroidDream’ malware attacked Android users, infecting an estimated 200,000 smartphones, with over 50 applications affected and withdrawn as a result.
“With our businesses becoming more connected, we’re reliant on our mobile devices. The growing adoption of traditionally ‘consumer’ products from the likes of Apple by business users, and the establishment of the app stores on our handsets, we’re going to see the threat implications that this may have on the enterprise becoming a bigger focus for business security.”