Geeks2U Promise
We guarantee you'll love our fast, friendly service - or we'll refund your money.  
133,572 Happy Customers & Counting
Need tech support?
1300 769 448
Extended hours, 7 days a week
Home  /  geekspeak  /  Update frequently — but be careful where you get your updates from.

Update frequently — but be careful where you get your updates from.

Software update

It’s a constant mantra in the IT world that you absolutely must keep your Internet connected systems up to date. This patch for your operating system. That bugfix for your browser. These upgrades for your instant messaging software and seemingly endless updates for your anti-virus software. It can be a little fatiguing at times, but, outside of actual program revisions — things like jumping to from actual different versions of operating systems or major, feature-different iterations of application software — it’s generally advisable to upgrade as soon as possible, if only because one of the highlighted fixes that usually come through with new releases are security fixes. Software isn’t perfect, and it’s a sad truth that if there’s something that can be exploited within it — and especially if it can be exploited for money — then chances are it will be.

So you update frequently, making sure that you’re entirely up to date. But have you ensured that you’re getting the updates directly from the source? That’s just as important as actually performing the update process, simply because it’s all too common for malware to pose as legitimate software updates — and even more sneaky for it to do so. You figure you’re entirely up to date, but in fact your system is even more vulnerable than you thought, because it’s not only not patched, but also actually compromised. Oracle’s Java platform recently fell foul of this, problem, not quite despite Oracle’s lack of patching, but realistically almost because of it.

Java’s been something of whipping boy for the security community, and many advise simply disabling it in your browser. There are legitimate functions that still rely on it, however, and Oracle did a lot of work fixing bugs recently with a large update (http://java.com/en/download/index). That legitimate was spoofed by malware pretending to be the correct software (http://threatpost.com/en_us/blogs/security-firms-warn-users-fake-java-updates-012113), leaving users who may have tried to update with no update at all, although the fact that the fake update wasn’t published by Oracle should have been a bit of a red flag to them. This kind of deception in malware is nothing new; it’s the same tactic behind dodgy emails claiming to be from your bank, eBay, Telstra or that unusual Nigerian prince who seems to have an awful lot of money for you. In the case of the emails, though, you should just hit delete. For software updates, send your browser directly to the original update source (if it’s not indicated within the application itself) — anything else is rather risky.

FacebookTwitterGoogle+Share

Recent News

snapdragon

Ever since the computer market shifted from desktop PCs to laptops, there’s been a significant balancing act going on between the needs of computer users for processing power to run programs, and the needs of those same users for battery power to keep their laptops going. At a simplified level, the harder you push a… More 

Apple-Apple

For the longest time, the generally accepted knowledge was that Apple’s Mac computers didn’t get malware or viruses. Apple even went so far as to mock its PC opposition in the famous “Mac vs PC” ads for the issues they had around security and malware, to a fairly solid effect. While Apple’s Macs do still… More 

intel

Quite often these days when we hear about a major security flaw, it’s to do with the underlying software that we’re running on our PCs, whether it’s a dodgy browser exploit, some kind of flaw in productivity software or even “free” content sites that are awash with malware. It’s not quite so often that we… More 

kindle

I’ve recently spent some time checking out Amazon’s latest Kindle e-reader, the 2nd generation Kindle Oasis. It’s the “luxury” choice in Amazon’s e-reader lineup, with a luxury price to match and a few new features to try to lure in those who love reading above other pursuits. One of the key new features is the… More