Daily Archives: August 23, 2022

  • MS-DEFCON 3: Issues with bootloader patches

    alert banner

    ISSUE 19.34.1 • 2022-08-23


    By Susan Bradley

    This month’s updates are a great example of why my patching advice differs for consumers and businesses.

    For consumer patchers, whether using Windows 10 Home or Professional, I’m not convinced that you need to install KB5012170, Microsoft’s security update for Secure Boot DBX (the Secure Boot Forbidden Signature Database). Unless, that is, you think you will be targeted by an overseas attacker with a malicious bootloader installer. If your computer holds the keys to the nuclear codes, then by all means install this update instantly. The fact that this isn’t clear-cut is the reason I can lower the MS-DEFCON only to 3 this time around.

    But if you are a normal user, with normal levels of paranoia to get you through the normal security risks of daily life, I’m not convinced that this update is mandatory. In fact, I think it often causes more pain than benefit. Just read through the threads of many a forum poster trying to get this update installed.

    Anyone can read the full MS-DEFCON Alert (19.34.1, 2022-08-23).