123ArticleOnline Logo
Welcome to 123ArticleOnline.com!
ALL >> Computers >> View Article

Ornl Combats Cyber-attack

Profile Picture
By Author: eccuni
Total Articles: 211
Comment this article
Facebook ShareTwitter ShareGoogle+ ShareTwitter Share

Recently, Microsoft initiated new set of advisories. The advisories termed as Microsoft Vulnerability Research (MSVR) advisories intend to alert users on security vulnerabilities associated with third-party products. MSVR advisories will contain alerts on vulnerabilities privately reported by Microsoft to third-party vendors and will normally be issued only after vendor-supplied patch is available. The initiative is part of the Coordinated Vulnerability Disclosure (CVD) approach of the developer.

Vulnerabilities in products manufactured by other vendors may be identified by in-house developers and test engineers of Microsoft and independent security researchers. They may also be detected by MSVR team through vulnerability analysis and research using internal tool sets on products, which run on Microsoft operating systems, but are manufactured by third-party vendors. The identified vulnerabilities are privately reported to the concerned vendor. MSVR coordinates with the concerned vendors to fix the security flaws.

Microsoft issued first set of MSVR advisories, which alerted users on use-after-free object Lifetime ...
... issue in Google Chrome and vulnerability related to HTML5 implementation in Chrome and Opera. The use-after-free object Lifetime issue is related to the way Chrome references freed memory. The flaw allows an attacker to cause the browser to become unresponsive and execute arbitrary code within Chrome Sandbox. The flaw affects Chrome versions prior to 6.0.472.59. Google has mitigated the vulnerability. The vulnerability related to HTML5 implementation affects Chrome 8.0.552.210 and prior versions, and Opera browser 10.62 and prior versions. The security flaw could cause information disclosure, which could be used by attacker to further compromise the affected system. Both Google and Opera have mitigated the security flaw in their respective software.

Attackers constantly ascertain and explore ways to exploit vulnerabilities in software products. Attackers also take advantage of time lag in release of a security update and subsequent implementation by users. Proactive and coordinated approach is required to minimize exploitation of vulnerabilities. As vendors are under constant pressure to develop secure products, the CVD approach may benefit all vendors and provide protection to users. The approach augurs well for the IT industry, which faces shortage of professionals qualified in IT degree programs and other security certifications.

Vendors must educate users on cyber security through security blogs, advertisements, e-tutorials and e-flyers. Organizations must educate employees on security threats and safe online practices through e-learning and Online IT courses.

The vibrant threats in the IT environment make it imperative for cyber security professionals to abreast themselves of latest security tools and techniques by undertaking online IT degree programs, participating in training programs and security conferences.

Total Views: 327Word Count: 418See All articles From Author

Add Comment

Computers Articles

1. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise Servers
Author: Server Tech Central

2. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp

3. Why Should You Plan Blinkit Onboarding Before Market Expansion And How Can Zane Marketing Help You Grow Faster
Author: Zane Marketing

4. Customer Identity And Access Management (ciam) Market : Strengthening Security And Customer Trust
Author: Umangp

5. How To Start Your Website Redesign Project?
Author: brainbell10

6. Sap Compliance In Manufacturing: Closing The Gaps Grc Leaves Behind
Author: Mansoor Alam

7. Speech Analytics Market : Unlocking Actionable Insights From Customer Conversations
Author: Umangp

8. Data Preparation Tools Market: How Ai And Cloud-based Solutions Are Transforming Modern Data Workflows
Author: Umangp

9. How To Setup And Create Instagram Ads?
Author: brainbell10

10. Why Digital Business Cards Are The Future Of Professional Networking
Author: WhyTap

11. End To End Sataware Product Development Is The Process Of Identifying Market Opportunities To Hire Flutter Developer, Connecting User Needs And Requir
Author: brainbell10

12. Dynamics Nav To Business Central Upgrade Guide
Author: brainbell10

13. Data Governance Framework: Building Trust In The Digital Age
Author: Umangp

14. A Complete Guide To Dynamics 365 Warehouse Management
Author: brainbell10

15. Conversational Ai In Intelligent Contact Centers: Market Outlook And Future Growth To 2028
Author: Umangp

Login To Account
Login Email:
Password:
Forgot Password?
New User?
Sign Up Newsletter
Email Address: