Application Security Testing: An Integral Part of DevOps
This month's patch release is unusual in that it was released the Tuesday following the recent DEFCON conference in Las Vegas, rather than before the black hat event. As Aviv Raff, the CTO of Seculert, a cyber security management company, put it, "Usually, vendors patch for zero day before a security conference in order to block security researchers from releasing them."
This week Microsoft on Tuesday announced the release of its monthly patch, which fixes 22 security vulnerabilities found in Internet Explorer, Visio, Visual Studio and Windows. Of the releases, two are considered critical updates which should be applied immediately for Internet Explorer and Windows DNS Server.