System administrators and programmers are finally hearing the message IT security professionals have been sending for years—automatic software updates can introduce nasty code that cripples your environment. This article aims to highlight the threats posed by the automatic update process when security vulnerabilities are introduced into this model, and the possibility of circumventing network protection to launch attacks against the corporate network. In recent years the acceptance of activities like vulnerability assessment and penetration testing within the corporate enterprise has risen significantly. The media has helped this growth by publicising the dangers presented to networks by intelligent and aggressive worms that roam the public domain.
展开▼
