The Patching Dilemma: Should Microsoft Fix Flaws in Older Tech?

[TechWeb](?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=a3ae0fb1d08341cc887e587e30643d43&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) Follow Dark Reading: [RSS]( August 09, 2017 Top!Top?elq_mid=79687&elq_cid=22844169 LATEST SECURITY NEWS & COMMENTARY [The Patching Dilemma: Should Microsoft Fix Flaws in Older Tech?]( When researchers find vulnerabilities that leave older systems exposed, should the software giant create patches or encourage upgrades? Experts weigh in. [67% of Malware Attacks Come by Way of Phishing in Second Quarter]( During the second quarter, cyberattacks soared 24% worldwide with phishing attacks playing a large role and Adobe Flash one of the favorite attack targets, according to a report released today by NTT Security. [Automating Defenses Against Assembly-Line Attacks]( A manual approach just won't cut it anymore. Here's a toolset to defeat automation and unify control across all attack vectors to stop automated attacks. [New Consortium Promotes Proper Data Sanitization Practices]( The International Data Sanitization Consortium (IDSC) will create guidelines and best practices for sanitizing data on hardware devices. [Konni Malware Campaign Targets North Korean Organizations]( For at least three years, an unknown threat actor has used the RAT to steal data and profile organizations in North Korea. [HBO Data Dumped, Hackers Demand Millions]( Attackers who reportedly stole 1.5TB of data from HBO release a second data dump and demand millions in ransom. [WatchGuard Acquires Authentication Provider Datablink]( WatchGuard looks to expand its security offerings into authentication solutions for small- to midsize businesses and enterprises with a distributed workforce. [MORE NEWS & COMMENTARY]( HOT TOPICS [WannaCry 'Kill Switch' Creator Arrested in Vegas]( Federal authorities indicted and nabbed Marcus Hutchins, aka MalwareTech, for allegedly creating and distributing the Kronos banking Trojan. [Steganography Use on the Rise Among Cyber Espionage, Cybercrime Groups]( At least three cyber espionage campaigns and several malware samples in recent months have employed ancient technique, Kaspersky Lab says. [What Women in Cybersecurity Really Think About Their Careers]( New survey conducted by a female security pro of other female security pros dispels a few myths. [MORE]( EDITORS' CHOICE [2017 Pwnie Awards: Who Won, Lost, and Pwned]( Security pros corralled the best and worst of cybersecurity into an award show highlighting exploits, bugs, achievements, and attacks from the past year. Tech Resources - [GDPR Compliance: You Need an Action Plan, Do You Have One?]( - [Ransomware and the Limits of Conventional Protection]( - [SecureAnywhere vs. Seven Competitors](april-2017)/390673?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=f34b6bf79b474950878f9ca13103663d&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) - [Survey Report: Cyber Threat Intelligence Uses, Successes and Failures](-successes-and-failures/391013?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=cba429fc2cdf4da4912155a961a2d3d3&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) - [Cybersecurity 101: The Fundamentals of Today's Threat Landscape](E2%80%99s-threat-landscape-/391153?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=55e92c107b494f5391998c00304dabe5&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) - [Cyber Threats on a Path to Destruction]( - [Lower IT costs, improve security and compliance](-improve-security-and-compliance/391083?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=1edf1eeffaa14e11aa2248f5e1090e3b&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) [ACCESS TECH LIBRARY NOW]( - [Using Threat Data to Improve Your Cyber Defense]( Attend this webinar to learn how you can determine which threats pose the greatest danger to your enterprise, and how to analyze threat data and use it to help improve your organization's cyber defense. - [[Cyber Attackers] How They Research Your Organization & What To Do About It]( In this eye-opening webinar, you'll learn how attackers can take advantage of your website, employees' social media, and other vehicles to learn about your organization - and get the ammunition they need to convince your end users to trust them. [MORE WEBINARS]( Partner Perspectives [Fight 'Credential Stuffing' with a New Approach to Authorization]( Token-based authorization that lets users prove their identity through Facebook, Google, or Microsoft credentials can dramatically reduce your attack surface and give enterprises a single point of control. [Can Your Risk Assessment Stand Up Under Scrutiny?]( Weak risk assessments have gotten a pass up until now, but that may be changing. [Lessons from Verizon: Managing Cloud Security for Partners]( The recent Verizon breach - data exposed by an insecure Amazon S3 bucket - highlights the need for enterprises to have visibility into how partners and other stakeholders keep their data secure. Middle!Middle?elq_mid=79687&elq_cid=22844169 FEATURED REPORTS - [[Security Breach Report] Overall Impact of & Steps to Prevent Breaches]( Despite the escalation of cybersecurity staffing and technology, enterprises continue to suffer data breaches and compromises at an alarming rate. How do these breaches occur? How are enterprises responding, and what is the impact of these compromises on the business? ... - [How to Invest in Cybersecurity & Prioritize Resources](strategic-security-report]-how-enterprises-are-attacking-the-cybersecurity-challenge/390403?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=a14c1aa9d1984d22ac0a7af4b84c681a&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) In 2016, enterprises encountered a range of new exploits and threats -- including ransomware and state-sponsored attacks -- and developed new plans of defense. How will these organizations be investing their cybersecurity budgets and staffing in the next 12 months? What tools ... [MORE REPORTS]( CURRENT ISSUE [Security Vulnerabilities: The Next Wave]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [AlienVault Updates OTX Community for Threat Intelligence Sharing, Detection and Response]( [Security Summit Alert: Tax Pros Warned of New Scam to Steal Their Passwords]( [Perimeterx Raises $23 million to Expand AI Behavioral Threat Platform](23-million-to-expand-ai-behavioral-threat-platform-/d/d-id/1329567?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=d2b2a38ce6654f298a410d5a7ca544c2&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) [Bricata Raises $8 Million in Series A Funding Led by Edison Partners](8-million-in-series-a-funding-led-by-edison-partners/d/d-id/1329564?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=3d06a0e98f374fabbc43654a3c1b6f89&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [InformationWeek](?elq_mid=79687&elq_cid=22844169&_mc=NL_DR_EDT_DR_daily_20170809&cid=NL_DR_EDT_DR_daily_20170809&elqTrackId=b5dd65bb73ae4d4e870715dca6f57579&elq=0d9deefd424245f6bc184e8a7860aa82&elqaid=79687&elqat=1&elqCampaignId=27549) UBM Tech 2 Penn Plaza, 15th Floor, New York, NY 10121 To update your profile, change your e-mail address, or unsubscribe, [cick here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:email@techwebnewsletters.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2017]( | [UBM Tech]( | [Privacy Statement]( | [Terms Of Service]( | [Contact Us](mailto:iwkbtnnewsletters@ubm.com)