Patch Tuesday May 2017

Patch Tuesday May 2017: all the monthly security news you need for your business. Why should you patch all your devices monthly? Patching is your first line of defence against ransomware, viruses and other web nasties.

Microsoft Updates

Microsoft released patches on May 9th that squashed over 50 security vulnerabilities in all their products (including Office for Mac). More details here.

Microsoft also released patches on May 12th for Windows XP and Windows 8 in response to the WannaCry or WannaCrypt ransomware outbreak first seen in Europe. That  was vulnerability was patched for Windows 10 back in March.

Android Agony

Google released more updates to the Android operating system this month. Android is the most popular phone to hack.

However just because Google releases updates that doesn’t mean your phone hardware manufacturer or service provider will actually update your device. The manufacturers and service providers are horrible at testing and releasing these critical updates for the clients.

Security researchers are clamouring for Google to forces the manufacturers and service providers to do something about the sad state of security for Android phones and tablets.

If you have an Android phone, be sure to run any updates to do receive. Also be careful about dodgy apps from the Google Play store and opening links in phishing emails.

Routers to Oblivion

Asus released an urgent patch for all the RT-N model routers this month. Hackers are able to change settings on the router and web hijack your search results.

If you haven’t updated your router in the last month, login to the control panel and do a firmware update now.

Byte of the Apple

Apple released seven security updates May 15th for all their iThingys and operating systems. And watches and Apple TV. More details here.

Be sure to install these updates. Apple products are vulnerable to viruses and web hijacking.

Intel Management Engine Vulnerability

Unbelievably your computer with an Intel processor can be hacked via a webpage.  Hacked at the firmware level so below the operating system and any antivirus software you may have.

The vulnerable chips are found in servers and desktops. However the patch for this flaw is dependent on the computer manfacturer (like Dell, HP, Lenovo) not Intel.

Computers from HP, Dell, Lenovo and Fujitsu are vulnerable. Be sure to install any manufacturer security updates for your computers when they become available.

More on this story here.

An ounce of patching protects from a pound of hacking. Be sure to update all your devices this month.