« Good Security News At Last | Main | Corporate Networks Under Threat »

As proof that IT pros must update often and on-time, and many still don't, a certain patch that Symantec issued seven months ago for a vulnerability in their antivirus software is still being actively exploited throughout cyberspace. That means that a virus that should be dead and gone by now is still very much ALIVE!

As reported by The Register, this exploit turns user PCs into zombies that join other zombies to create a vast botnet used to spread spam and engage in denial-of-service attacks. And the only thing keeping this malware alive is other IT pros, pro as in procrastinators (although there are plenty of excuses, of course, as just about everything needs to be done yesterday).

The attack targets unpatched versions of Symantec Client Security and Symantec AntiVirus Corporate Edition. Symantec initially dismissed the flaw, saying it wasn't likely to be exploited, until the the worm resurfaced in November. And unlike many Symantec updates, which are installed automatically, the fix for corporate antivirus software has to be downloaded on the company's website and manually installed. Symantec is wisely re-evaluating this policy.

Let's face it, most IT professionals pay for protection so they can be free to worry about all the other things there are to worry about in a corporate computer system.

Posted by pschooff in Better Protection • Patches • Small Medium Enterprise |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/1193