Patch Tuesday promises a critical fix for Internet Explorer 8 - and not a moment too soon


Windows patchNext Tuesday (14th May 2013), at approximately 1pm EST, Microsoft will be releasing its regular swathe of security updates.

And this month it will be particularly well received, as it is anticipated that amongst them will be a proper fix for the critical Internet Explorer 8 flaw that hackers have exploited to spread malware via US government websites such as the Department of Labor.

In a blog post giving advance notification of the “Patch Tuesday” updates, Group Manager of Microsoft Trustworthy Computing Dustin Childs said that the company would issue two Critical and eight Important-class bulletins, addressing a total of 33 unique vulnerabilities.

Most important, of course, are those critial security bulletins which this month address flaws in Microsoft Windows and Internet Explorer.

Microsoft has already released a “Fix it” tool which can act as a temporary band-aid against the Internet Explorer 8 vulnerability, but in all likelihood the vast majority of consumers would be unaware that it existed - let alone considered installing it on their computers.

If Microsoft is successful in releasing a proper fix for the Internet Explorer 8 zero-day flaw then they deserve applause for turning around a working patch so quickly.

As I wrote last week, a proper security patch like the one promised for “Patch Tuesday” is a much better solution than a stop-gap tool to address known attack vectors.

So, if your IT team is busy after Tuesday next week, applying security updates to the computers on your network - cut them a little slack. They’re doing what they can to keep your Windows PC protected against cybercriminals.

And if you’re responsible for maintaining the security of your own PC, make sure that you install the patches as soon as possible. For many users, the most sensible course of action is to tell Windows to install such security patches automatically.

Tags: , , , , , ,

Share this article:

   Join thousands of others and sign up to our free "GCHQ" newsletter.

Smashing Security podcast
Check out "Smashing Security", the award-winning weekly audio podcast, with Graham Cluley, Carole Theriault, and special guests from the world of information security.

"It's brilliant!" • "Three people having fun in an industry often focused on bad news" • Winner of the Best Security Podcast 2018

Latest episodes:
Listen on Apple Podcasts Listen on Google Podcasts

, , , , , ,

No comments yet.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.