Six of the security bulletins have been rated as critical by
Microsoft.
Sophos, a world leader in IT security and control, has advised
companies to consider the benefits of Network Access Control (NAC)
in light of the announcement of a number of new critical security
patches from Microsoft.
As part of its monthly "Patch Tuesday" schedule Microsoft has
issued nine new bulletins (six of them described as "critical")
about a number of different security vulnerabilities in its
software including Microsoft Excel and Internet Explorer. Sophos
recommends that organizations roll-out the patches as a matter of
urgency, as some of them could enable hackers to access data on a
vulnerable PC or run malicious code such as a worm.
"More and more companies are recognizing the importance of
ensuring that all computers which connect to their network conform
to a defined security policy, which includes having the latest
security patches in place," said Graham Cluley, senior
technology consultant at Sophos. "Network Access Control
gives businesses the ability to control who and what is connecting
to their systems. If the PC isn't running the patches that you need
to secure your business you can prevent it from causing any harm to
the rest of your organization. If left unpatched a PC risks
bringing spyware or other malicious code right into the heart of
your network."
Home users of Microsoft Windows can visit update.microsoft.com to have their systems scanned for
Microsoft security vulnerabilities.
Sophos suggests that every IT manager responsible for security
should consider subscribing to vulnerability mailing lists such as
that operated by Microsoft at www.microsoft.com/technet/security/bulletin/notify.mspx.
Sophos continues to recommend companies protect their desktops
and servers with automatically updated
protection against viruses, spyware, hackers, and spam.
Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com.