![Security training and freelancers](/content/images/size/w560h315/2024/07/08_Security-training-and-freelancers-1.jpg)
Security training and freelancers
Freelancers are often asked to complete a company's security training and awareness courses, but few companies communicate clearly about this in hiring conversations.
Read MoreApple, Microsoft and Google: three of the biggest names in tech. And in October 2023 they appeared together in this Wired article – because they’ve all been busy patching some serious vulnerabilities.
So what did they fix? And how can organisations of all sizes improve their patch management systems?
At the end of October, Apple issued 12 new security fixes for its iOS 17.1. They included:
With more than 100 issues patched, Microsoft’s efforts have included zero-day vulnerabilities, among others:
The Chrome browser had 20 vulnerabilities patched, including one (the first on our list) that was rated as critical:
Some of the vulnerabilities here have already been exploited by attackers, while some haven’t yet been used in real-life attacks. They have varying degrees of severity, but all of them could be exploited – so users should update their devices and software as soon as possible to benefit from the security patching.
As well as Chrome, Google has patched a further 53 vulnerabilities on Android, some of them rated as critical – including a heap buffer overflow issue (CVE-2023-4863) that Malwarebytes noted could be used to install spyware.
Big tech companies are patching all the time – as highlighted by Microsoft’s well known monthly Patch Tuesday updates.
It’s the art of maintaining security. And there are some best practices for patch management that companies of all sizes can follow:
And come to Black Hat MEA to gain access to the latest insights and research in patch management, and connect with vendors and partners who can help you secure your organisation. We can’t wait to see you there
Join the newsletter to receive the latest updates in your inbox.
Freelancers are often asked to complete a company's security training and awareness courses, but few companies communicate clearly about this in hiring conversations.
Read MoreGuided by Stuart Seymour (CISO at Virgin Media), we look at the value of neurodiverse talent in cybersecurity – and what the industry can do to welcome neurodiverse professionals.
Read MoreSaeed Abu-Nimeh (Founder and CEO at SecLytics) is one of the world’s leading experts on machine learning in cybersecurity – and he’s driving innovation to streamline security operations with ML.
Read More