Microsoft may not be the most respected name in secure software products, but if you do not use EMET on all of your machines you miss the best free mitigation available for Windows operating systems. EMET is classified as a utility by Microsoft. The purpose of the utility is to make it harder for any attack of a known software vulnerability in any program. This gives you another security buffer for Adobe, Java, Office products or the custom program that you need to run your business.
These defenses are not available in any of the current Microsoft operating systems. You must use the EMET utility to provide this extra layer of protection. The cost of adding EMET is always less than remediation of an infected system or the loss of sensitive information.
Attack Surface Reduction (ASR) and Export Address Table Filtering Plus (EATF+) are two new features added to EMET 5.0. ASR can prevent modules or plug-ins in programs from automatically executing code. This feature protects Microsoft Word, Excel and PowerPoint from loading the Adobe Flash player. EATF+ can help detect and disrupt some current techniques used to execute code when a vulnerability is exploited. EMET 5.0 can also terminate an Internet browsing SSL connection, https:, that has a untrusted certificate without sending session data to the source internet site. This keeps your identity safe from anyone that is using a suspicious certificate online.
Microsoft’s EMET should be tested with your software before you deploy this utility in a production environment.
The EMET 5.5 utility is available at the Microsoft download center.