
Bruno Ferreira is a contributing writer for Tom's Hardware. He has decades of experience with PC hardware and assorted sundries, alongside a career as a developer. He's obsessed with detail and has a tendency to ramble on the topics he loves. When not doing that, he's usually playing games, or at live music shows and festivals. ","collapsible":{"enabled":true,"maxHeight":250,"readMoreText":"Read more","readLessText":"Read less"}}), "https://slice.vanilla.futurecdn.net/13-4-24/js/authorBio.js"); } else { console.error('%c FTE ','background: #9306F9; color: #ffffff','no lazy slice hydration function available'); } Bruno Ferreira Social Links Navigation Contributor Bruno Ferreira is a contributing writer for Tom's Hardware. He has decades of experience with PC hardware and assorted sundries, alongside a career as a developer. He's obsessed with detail and has a tendency to ramble on the topics he loves. When not doing that, he's usually playing games, or at live music shows and festivals.
ezst036 Linux was vulnerable last month. Who will it be in July or August. Reply
bit_user The article said: they're averages, meaning half the machines purportedly go unpatched for longer than those timeframes. That's true of a median, but not necessarily a mean (which is the more common type of average). Even with a mean, some machines will go unpatched for longer, but it's not usually a 50/50 split – especially in cases where the distribution is asymmetrical, which should be the case here. Reply
DS426 ezst036 said: Linux was vulnerable last month. Who will it be in July or August. Windows — almost certainly based on Nightmare Eclipse's own claims. Linux might be as well due to the use of recent AI models to both find software vulnerabilities and craft exploits for them. Reply
DS426 Crazy that time-to-patch is increasing when newer advances in patching like Autopatch and Hotpatching are available in the Windows world. A 30-day TTP is too long on Windows in a business environment, about 7 days being the gold standard and 14 being silver. Sysadmins do have to test on various client and server hardware and software combinations and roll out gradually ("update rings"), which takes several days for most medium to large organizations. Rather high numbers in this article for TTP; I think Absolute is using data on consumer PC's as well, some of which are ones where someone paused updates and thus are kind of skewing the numbers as @bit_user mentioned can happen with both mean and median averages ("outliers"). I'm seeing numbers in the single-digits to teens for a good portion of enterprises from various reporting sources on the Windows OS, though apps do have higher numbers. Still, yes, millions of Windows PC's remain vulnerable to actively-exploited OS and/or app vulns for over a month. That reality isn't going away any time soon. Edit: looking into this more, this article is missing some important context. It reads: Microsoft released a patch on April 14, but as a clear illustration of the lack of cybersecurity awareness, CISA (the U.S. cyber-defense agency) yesterday marked BlueHammer as actively exploited in ransomware campaigns. CISA added BlueHammer to the KEV on April 22nd, then updated the 'Used In Ransomware Attacks?' flag on that KEV page to 'yes' this past Monday June 29th. BlueHammer was actually exploited as a zero-day as reported by Huntress Labs threat researchers — first exploited on April 10th, four days before MS released the patch, hence it becoming an actively-exploited zero-day. So, even the best TTP in the world wouldn't have protected those endpoints from being exploited using BlueHammer. The bigger/more relevant security narrative IMO going on here is Nightmare Eclipse releasing zero-days on or after Patch Tuesday and Microsoft's continued failure to resolve the dispute. Not that TTP isn't a serious global security issue because it is, but I found it detracting. That's me though, take it FWIW at free-ninety-nine. 😉 https://www.huntress.com/blog/nightmare-eclipse-intrusion(Article was published on 20 April but they mention about half-way down about the 10 April observance of BlueHammer in the wild). Reply
Key considerations
- Investor positioning can change fast
- Volatility remains possible near catalysts
- Macro rates and liquidity can dominate flows
Reference reading
- https://www.tomshardware.com/tech-industry/cyber-security/SPONSORED_LINK_URL
- https://www.tomshardware.com/tech-industry/cyber-security/windows-defender-bluehammer-vulnerability-now-exploited-as-part-of-malware-campaigns-cisa-issues-warning-despite-patch-release-on-april-14#main
- https://www.tomshardware.com/subscription
- Meta releases version two of its brain-computer interface that can turn thoughts into keypresses — non-invasive magnetoencephalography scanner can measure chang
- NVIDIA Powers Over 400 of the World’s 500 Fastest Supercomputers
- HamsterOS jams a 32-bit GUI operating system in a single 1.44 MB floppy disk — retro OS for 386-era hardware should make for easy living with DOS machines and s
- 32GB Corsair Vengeance DDR5 is $314 in this Woot sale — the lowest standalone RAM price in months, thanks to $125 discount
- China’s Loongson launches homegrown 16-core server CPU built on LoongArch architecture — 40W chip with DDR4 ECC and 32 PCIe lanes targets cheap SMB file, databa
Informational only. No financial advice. Do your own research.