SECURITY PATCHES
WANNACRY: Windows XP Computers Were Mostly Immune to WannaCry. Windows XP isn’t as vulnerable to the WannaCry ransomware as many assumed, according to a new report from Kryptos research. The company’s researchers found that XP computers hit with the most common WannaCry attack tended to simply crash without successfully installing or spreading the ransomware. If true, the result would undercut much of the early reporting on Windows XP’s role in spreading the globe-spanning ransomware. Read more
[THEVERGE.COM]
APPLE: Users Advised to Update Their Software Now, As New Security Patches Released. Apple pushed out updates which are applicable for most of its customers: iOS 10.3.2 (for iPhone and iPad users), MacOS, OS X, watchOS 3.2.2, iTunes, Safari, tvOS and iCloud for Windows 6.2.1. Just looking at the fixes that have been released for iPhones, iPads and Macs it is clear that scores of security vulnerabilities have been addressed. Read the rest
[WELIVESECURITY.COM]
ANDROID: Google’s May Update Hits Bugs with Critical Patches for Nexus, Pixel. Google’s updates for Nexus and Pixel devices address critical bugs that could lead to remote code execution. Find out more
[ZDNET.COM]
MICROSOFT: New Security Update Guides Get Mixed Reviews. Microsoft is receiving mixed reviews for its shift to delivering security update information via its newly launched Security Update Guides. The change was official in April, with Microsoft explaining it would allow system administrators to effectively pair specific patches with vulnerabilities, and that the introduction of API support would help customers automate some aspects of patching. After the release of patches in early May, however, the jury is still out when it comes to liking or loathing the new format. For starters, some critics argue it takes longer to parse the data delivered via Security Update Guides. Read more
[THREATPOST.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems April 2017 https://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-april-2017-75757463.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========