Enterprises should increase their focus on patching third-party software by, if possible, investing in patch or...
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
system management products that will allow them to push updates for all of the software used in the organization. Criminals have been moving up the network stack -- and away from operating systems -- for their attacks as network and operating system security has improved over time. Enterprises also have devoted significant efforts to patching Windows and have developed processes and procedures to manage Microsoft patches. Enterprises typically haven't spent as much effort in patching third-party software, and criminals, thus, have been increasing their efforts to exploit vulnerabilities in third-party software. Enterprises need to create a third-party security policy to take these growing threats into account, and potentially even add additional management systems to incorporate patching third-party products into their existing processes and procedures.
Enterprises are at the mercy of third-party vendors for patching these flaws and preventing a software exploit, but they are also at the mercy of Microsoft to patch their software. Enterprises should hold their vendors or software to the same high standards that they hold Microsoft for security by letting their vendors know they expect secure software and switching to more secure software when their current vendor doesn't meet this expectation.
Dig Deeper on Software Development Methodology
Related Q&A from Nick Lewis
Conficker malware was found in a German nuclear power plant computer system. Expert Nick Lewis explains the possible impact of malware infections of ...continue reading
OneSoftPerDay, an adware program can install backdoors on PCs, is able to avoid detection from antimalware tools. Expert Nick Lewis explains how to ...continue reading
The hot-patching feature in Windows servers is vulnerable to attacks from APT groups. Expert Nick Lewis explains what hot patching is and how to ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.