Skip to main content

Microsoft Releases Patch To Fix Major Malware Vulnerability

By May 11, 2017May 25th, 2021Cybersecurity

Microsoft is in the habit of releasing regular security updates and patches on the second Tuesday of each month. This month, though, in addition to the regular patch, the company’s massive user base got a second update that was rushed through development.
Security researchers at Google identified a critical vulnerability in a broad range of Microsoft software that included Microsoft Forefront, Windows Defender and Microsoft Security Essentials.

What these three pieces of software have in common is that they allow your PC to scan incoming files against a known malware database, and simply prevent them from ever hitting your computer in the first place.

Unfortunately, a flaw allowed hackers to dangle a “carrot” in front of the checking routine, which would distract it, fool it into thinking it had scanned all the files and wind up letting the malicious ones onto your system.

Microsoft took the discovery report seriously enough that they assembled an emergency response team to craft a fix and released it one day ahead of their regularly scheduled monthly update. The company got high marks from a variety of security professionals around the web for the speed with which they responded to this latest threat.

In related news, Adobe’s Flash Player got another major update on Tuesday, the same day as Microsoft’s regularly scheduled security update. If you’re still using the beleaguered Flash Player, the latest patch, which addresses seven critical security issues, is welcome indeed. However, most IT professionals are urging companies to retire Flash Player, which, by definition, means retooling company websites.

To this point, companies have been slow to respond to the threat Flash poses, and at present, it stands as one of the top digital security threats companies of all sizes face, simply because it’s so easy for hackers to exploit. If your company still relies on Flash, now is the time to prioritize moving away from it.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.