Patch Tuesday May 2016

Patch Tuesday May 2016Patch Tuesday May 2016: Flash and lots of sizzle. Already there are two zero day vulnerabilities, one for a Microsoft update and one for Flash. Patch Microsoft now and uninstall Flash if you can.

Microsoft: More, more, more

Microsoft wins the Patch Tuesday race this month with 7 critical and 9 important security updates. Patches affect all current version of Windows and Office.

And our favourite hot Flash is getting a fix too. More technical details here.

Microsoft also released their Security Intelligence Report for July to December 2015. Most interesting detail is that hackers are still targeting  a six year old vulnerability in Windows 7 which has been patched eons ago.

The moral of that story is that you need to patch your existing operating system and upgrade to newer operating systems (vulnerability does not exist in Windows 8 or 10).

More Android Agony

Google released 40 patches for Android on May 2nd.

Twelve of the fixes patch critical vulnerabilities in version 4.4.4 and higher. About 74% of Android devices run Android 4.4.4 and higher.

Nexus devices (5, 6, 7 and 9) will get the updates automatically.

Otherwise you have to wait for your carrier and/or gadget manufacturer to okay the updates and push them out.

Avoid dodgy apps and unsolicited videos.

More details here.

Apple byte

Only one update from Apple this month for El Capitan v.10.11 or higher. This security update is for Xcode 3.1.1.

Plug your WordPress Plugins

No updates for WordPress itself but several updates for popular plugins.

Yoast SEO needs to be patched to version 3.2.5

Wordfence required patching to 6.17.

Quiz and Survey Master jumps from 4.7.0 to version 4.7.1.

Be sure to login to web site dashboard and patch all your plugins.

Adobe Reader Agony Again

Security updates for Adobe Reader DC and Acrobat.

You can update both programs by going to the Help menu and clicking on Check For Updates.

Patch Tuesday leads to Exploit Wednesday when you don’t patch.