Tal Morgenstern

Recent Posts

Three Best Practices for Patch Tuesday

Posted by Tal Morgenstern on Sep 26, 2018 9:20:58 AM


The 15th anniversary of Patch Tuesday is coming up, and now is a good time to rethink how we approach patching as a whole, and how we prepare for Patch Tuesday specifically.

Read More

Topics: Patching

Putting Meltdown and Spectre in Perspective, Six Months Later

Posted by Tal Morgenstern on Aug 14, 2018 9:19:49 AM


For several months in early 2018, you could not open a browser without seeing news about Spectre and Meltdown – the variants of a vulnerability built in to just about every computer chip on the planet. Discovered in late 2017 by researcher Michael Schwarz at Graz University of Technology in Austria, Spectre and Meltdown actually comprise three vulnerabilities (CVE-2017-5715, CVE-2017-5753 and CVE-2017-5754).

Read More

Topics: vulnerability remediation, Meltdown and Spectre

How to Start the Transition from Risk Management to Vulnerability Remediation

Posted by Tal Morgenstern on Jul 24, 2018 6:37:36 AM

Just five years ago, the vulnerability landscape looked markedly different. There were fewer vulnerabilities to patch and risk was far lower - since most systems were still on-premise and the overall cyber-threat climate was calmer.

Read More

Topics: vulnerability remediation

Your Vulnerability Management Processes are Broken

Posted by Tal Morgenstern on Jun 28, 2018 7:38:40 AM


There’s no other way to state it: Existing vulnerability management processes are broken. Current vulnerability management paradigms are not keeping up with threats. Attacks similar to WannaCry and Petya, which exploited the Eternal Blue vulnerability, could happen again at any time.

Read More

Topics: vulnerability remediation