Free Newsletter

Just one security bulletin for Patch Tuesday in May

May 8, 2009 — 5:56am ET | By Paul Mah

Tools

Tags
IT security
Hacking
Security vendors
Microsoft
Vulnerability
Microsoft patches
Patch Tuesday
file formats
Lumension Security
Paul Henry

Microsoft's Patch Tuesday for the month of May is next week, and with just one security bulletin, it appears to be a much easier month for security and system administrators. IT departments should take care not let their guard down however, since hackers appear to be leveraging common file formats as an attack vector. Since users expect to receive and work with such files, the chance is much higher that users will open them--even if they are received from unknown senders.

A case in point is that many websites are hosting malicious files that attempt to exploit the newest vulnerability of the PDF file format. According to Paul Henry, security and forensic analyst for security vendor Lumension, "The most effective risk mitigation therefore, continues to be application control to prevent a compromised application from downloading and running any unauthorized software." In the meantime, keep patching.

For more on this story:
- check out this article at eWeek

SHARE WITH: