Vulnerability Intelligence VI VS Vulnerability Scanning Patch Creation PC PD Patch Deployment PM Business View Third Party Programs 86% Microsoft Programs 14% Criminals View Vendors What do you patch today What criminals attack Business critical programs Programs you know about Programs you don’t know about.

Download Report

Transcript Vulnerability Intelligence VI VS Vulnerability Scanning Patch Creation PC PD Patch Deployment PM Business View Third Party Programs 86% Microsoft Programs 14% Criminals View Vendors What do you patch today What criminals attack Business critical programs Programs you know about Programs you don’t know about. 

Vulnerability Intelligence
VI
VS
Vulnerability Scanning
Patch Creation
PC
PD
Patch Deployment
PM
Business
View
Third Party
Programs
86%
Microsoft
Programs
14%
Criminals
View
Vendors
What do you
patch today
What
criminals
attack
Business critical
programs
Programs you know about
Programs you don’t know
about
Vulnerabilities
in 2012 TOP 50
Apps
229 in 2007 421 in 2009
1137
Percentage of risk remediated
by patching N programs
Patching N of 200 programs
Strategy 1: Static
Risk remediated by patching the N
most prevalent programs
Percentage of risk remediated
100%
80%
Strategy 2: By Criticality
60%
Risk remediated by patching the N
most critical programs
40%
20%
0%
12
0
37
20
40
Number of programs patched
60
80% risk reduction achieved by
either patching the 12 most
critical programs, or by patching
the 37 most prevalent programs
Catalogs
downloaded
from web
Import Updates
Author Updates
Author custom
SCUP catalog
SCUP Console
Publish Updates
Sync Updates
WSUS Server
Scan Updates
ConfigMgr Server
Deploy Updates
ConfigMgr Clients
http://blogs.msdn.com/b/steverac/archive/2011/09/18/usingsystem-center-update-publisher-2007-with-verisigncertificates.aspx
PatchMyPC
https://*.secunia.com
https://*.secunia.com/
Adobe
Reader
Firefox
Adobe Flash
Apple Itunes
Google
Chrome
JAVA
[email protected] [email protected]
http://blog.coretech.dk/author/kea / http://www.patchzone.org
http://www.thwack.com
http://technet.microsoft.com/en-us/video/ff832960.aspx?category=Jason%20Lewis
http://patchmypc.net/
http://www.vmware.com/products/datacenter-virtualization/vcenter-protect-updatecatalog/faqs.html
http://www.adobe.com/devnet-docs/acrobatetk/tools/AdminGuide/sccm.html
http://secunia.com/vulnerability_scanning/
http://www.solarwinds.com/patch-manager.aspx