Answer:
Most computer attacks are the result of one of two things: improper configurations or insecure application programming. Most application vendors publish guidance on properly configuring their applications securely, however, properly configuring an application will not help if the application itself is vulnerable to attack. To address this issue many vendors and other organizations provide information on vulnerabilities identified and countermeasures to mitigate or eliminate the vulnerabilities. It is critical that all network devices, servers, and hosts are running the latest stable application code and bug fixes. However, monitoring for new application patches and security fixes as well as acquiring, testing, and deploying these changes into production can require significant amounts of time from administration personnel and should be planned for.
print
share