As I mentioned in a recent blog, TippingPoint celebrated its 15th birthday last month. Occasionally, I get asked if the company was named after the book The Tipping Point by Malcolm Gladwell. While we spell TippingPoint as ONE word with a capital P (despite a certain software’s insistence on spelling it as two words), our name did originate from the book. In the book, Gladwell defines a tipping point as “the moment of critical mass, the threshold, the boiling point.” He describes the “mysterious” sociological changes that mark everyday life. As Gladwell states, “Ideas and products and messages and behaviors spread like viruses do.” Little did Gladwell know that when he wrote his book, his words would influence a small startup in Austin, Texas that would end up developing one of the first intrusion prevention systems, a technology that is now widely deployed in enterprise networks around the world.
There have been many tipping points in the security industry in the past 15 years. We’ve seen the evolution from “simple” viruses that were executed for fun and street cred, to ransomware that holds all the information on your PC hostage unless you pay. We’ve seen security go from just securing your PC to now securing your phone, tablet, watch, refrigerator and even your car. This industry is never boring and there is nothing more exhilarating than discovering new ways to protect against evolving threats. What will the next tipping point be? It could be right around the corner, and TippingPoint (one word!) and Trend Micro will be there to address the latest threats to protect our customers.
Out-of-band Digital Vaccine for Zero-Day MySQL Vulnerability
On Monday, a zero-day flaw in MySQL database application was released by independent security researcher Dawid Golunski after Oracle reportedly failed to patch the critical security hole. The vulnerability (CVE-2016-6662) is a privilege escalation flaw which impacts all version branches of MySQL, including 5.7.15, 5.6.33 and 5.5.52, as well as software linked to MySQL, including MariaDB and PerconaDB.
On Tuesday, TippingPoint issued an out-of-band Digital Vaccine filter to address this vulnerability:
Microsoft Patch Tuesday Update
This week’s Digital Vaccine (DV) package includes coverage for the Microsoft Security Bulletins released on or before September 13, 2016. This month’s Patch Tuesday included 14 patch bundles to correct at least 50 vulnerabilities, including a zero-day bug in Internet Explorer. The following table maps Digital Vaccine filters to the Microsoft Security Bulletins. Filters designated with an asterisk (*) shipped prior to this week’s package, providing zero-day protection for our customers:
|Bulletin #||CVE #||Digital Vaccine Filter #||Status|
There are five new zero-day filters covering two vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website.
Trend Micro (2)
Updated Existing Zero-Day Filters
This section highlights specific filter(s) of interest in this week’s Digital Vaccine package that have been updated as a result of a vendor either issuing a patch for a vulnerability found via the Zero Day Initiative or a vulnerability that has been published by the Zero Day Initiative in accordance with its Disclosure Policy.
A few of the filters we have for this month’s Microsoft bulletins have been updated to reflect the fact that the vulnerabilities have been patched:
Missed Last Week’s News?
Catch up on last week’s news in my weekly recap.