15 Aug 2007
Latest Microsoft security holes underline need for Network Access Control, says Sophos
NAC can help firms defend against unpatched computers being exploited by hackers
Six of the security bulletins have been rated as critical by
Microsoft.
Sophos, a world leader in IT security and control, has advised
companies to consider the benefits of Network Access Control (NAC)
in light of the announcement of a number of new critical security
patches from Microsoft.
As part of its monthly "Patch Tuesday" schedule Microsoft has
issued nine new bulletins (six of them described as "critical")
about a number of different security vulnerabilities in its
software including Microsoft Excel and Internet Explorer. Sophos
recommends that organizations roll-out the patches as a matter of
urgency, as some of them could enable hackers to access data on a
vulnerable PC or run malicious code such as a worm.
"More and more companies are recognizing the importance of
ensuring that all computers which connect to their network conform
to a defined security policy, which includes having the latest
security patches in place," said Graham Cluley, senior
technology consultant at Sophos. "Network Access Control
gives businesses the ability to control who and what is connecting
to their systems. If the PC isn't running the patches that you need
to secure your business you can prevent it from causing any harm to
the rest of your organization. If left unpatched a PC risks
bringing spyware or other malicious code right into the heart of
your network."
Home users of Microsoft Windows can visit update.microsoft.com to have their systems scanned for
Microsoft security vulnerabilities.
Sophos suggests that every IT manager responsible for security
should consider subscribing to vulnerability mailing lists such as
that operated by Microsoft at www.microsoft.com/technet/security/bulletin/notify.mspx.
Sophos continues to recommend companies protect their desktops
and servers with automatically updated
protection against viruses, spyware, hackers, and spam.
About Sophos
More than 100 million users in 150 countries rely on Sophos as the best protection against complex threats and data loss. Sophos is committed to providing security and data protection solutions that are simple to manage, deploy and use and that deliver the industry's lowest total cost of ownership. Sophos offers award-winning encryption, endpoint security, web, email, and network access control solutions backed by SophosLabs - a global network of threat intelligence centers. With more than two decades of experience, Sophos is regarded as a leader in security and data protection by top analyst firms and has received many industry awards.
Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com.