Why you should isolate un-patchable, end-of-life software

October 17, 2019October 10, 2019 ~ larshilse ~ Leave a comment

And another blog post from the recent past I outlined why a patch policy and an update policy maybe critical for survival of an organization. On rare occasions, and actually more often than desirable critical software upon which the organization relies to operate cannot be updated or patched simply because this piece of software has … Continue reading Why you should isolate un-patchable, end-of-life software

Application security is not necessarily necessary

June 12, 2019June 7, 2019 ~ larshilse ~ Leave a comment

Often times applications have reached end-of-life, or are no longer supported by the vendor. In this case organizations tend to weed out or replace such applications simply due to this fact. I was confronted with this organization while performing a due diligence for an investment company. The course after of the organization in question was … Continue reading Application security is not necessarily necessary

Why it’s a good idea to isolate EOL applications/software with insufficient patches, and how to do it

October 30, 2018October 30, 2018 ~ larshilse ~ Leave a comment

Software that it’s not regularly updated presents at risk. However, sometimes it is out of our influence whether or not a software remains up to date. If the software vendor does not provide updates and patches in time, and option to deal with such situations is to isolate software in virtual machines etc.