Newsletter Archives
-
MS-DEFCON 4: Skip those Secure Boot scripts
ISSUE 20.21.1 • 2023-05-23 By Susan Bradley
Deploy May updates — and nothing but the updates.
I’m lowering the MS-DEFCON level to 4 to encourage you to install the May updates now.
However, I do not recommend taking the optional steps recommended by Microsoft to revoke the vulnerable bootloader files, as I discussed in yesterday’s On Security column. I do not think these manual steps provide full protection for this vulnerability — or potential future ones.
Anyone can read the full MS-DEFCON Alert (20.21.1, 2023-05-23).
-
MS-DEFCON 2: Settling down for a stable Windows 10
ISSUE 20.18.1 • 2023-05-04 By Susan Bradley
The order of the day is Windows 10 22H2.
With Patch Tuesday just around the corner, it’s time to defer updates. Therefore, I’m raising the MS-DEFCON level to 2.
However, there is one exception. If you are running Windows 10, update to release 22H2 as soon as possible. If you can’t get to it by Tuesday, defer — but be sure to get it done before the end of May.
Anyone can read the full MS-DEFCON Alert (20.18.1, 2023-05-04).
-
MS-DEFCON 4: Major April issue, but not from updates
ISSUE 20.17.1 • 2023-04-25 By Susan Bradley
I’m ready to approve the April updates.
Accordingly, I’ve lowered the MS-DEFCON level to 4. This is not to say there are not a few oddities out there, but they will not affect many users.
Most of the unusual behavior in updates this month is due to slow changes that will lead to future enforcement changes.
Microsoft has also pushed off the implementation of the mandatory, number-based, multifactor authentication for Microsoft 365 applications.
Anyone can read the full MS-DEFCON Alert (20.17.1, 2023-04-25).
-
MS-DEFCON 2: Prepare for April showers
ISSUE 20.14.1 • 2023-04-06 By Susan Bradley
The next round of updates is coming soon and may be confusing.
For one thing, it now appears that Windows 10 and Windows 11 updates will diverge. That is reason enough for me to raise the MS-DEFCON level to 2.
Any confusion instantly causes me to recommend deferring updates.
It does not appear that the forthcoming updates for Windows 10 will introduce any changes. They will include only security patches. Microsoft stated:
After March 2023, there are no more optional, non-security preview releases for the supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only monthly security update releases will continue for these versions.
Anyone can read the full MS-DEFCON Alert (20.14.1, 2023-04-06).
-
MS-DEFCON 4: Win11 22H2 not ready for prime time
ISSUE 20.13.1 • 2023-03-28 By Susan Bradley
March updates are ready. Windows 11 22H2, not so much.
It’s time to install the updates for the March releases, and that’s why I’m lowering the MS-DEFCON level to 4. There are a few issues out there, but most appear to be plain old low-risk bugs — things that used to be caught in Microsoft’s beta testing. As usual, it seems we’re the beta testers.
I have several Windows 11 22H2 deployments in active use. If you are not an advanced user, are relatively new to the Windows platform, or are really into rounded corners and having to click several times to build shortcuts on your desktop, you might be tempted to forgive Microsoft for some of these cosmetic bugs.
Anyone can read the full MS-DEFCON Alert (20.13.1, 2023-03-28).
-
MS-DEFCON 2: March Madness begins
ISSUE 20.10.1 • 2023-03-09 By Susan Bradley
Ready for Windows 11 dribbles?
In addition to waiting for side effects of security patches to manifest themselves, sometimes you need to wait to see the impact of changes from the prior month’s preview updates. This month more than ever, you should to delay or defer to see the impact of the March changes for Windows 11 22H2.
Accordingly, I am raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (20.10.1, 2023-03-09).
-
MS-DEFCON 4: Wrapping up a short month
ISSUE 20.09.1 • 2023-02-28 By Susan Bradley
February’s patches affected you either severely, or not at all.
The good news: If you are a consumer, home user, or business that does not use Windows Server 2022 or any version of on-premises Exchange server, you will be just fine installing the updates at this time. Therefore, I am very comfortable with lowering the MS-DEFCON level to 4.
However, if you are a business patcher with Windows Server 2022 hosted in VMware, you may have been significantly impacted. In addition, patch administrators are still dealing with the side effects of the Exchange updates.
Anyone can read the full MS-DEFCON Alert (20.09.1, 2023-02-28).
-
MS-DEFCON 2: .NET and Remote Desktop
ISSUE 20.06.1 • 2023-02-09 By Susan Bradley
Defer until the February updates are fully understood.
Even though I don’t anticipate any specific problem with February’s updates, it’s always hard to know for sure. For that reason, the MS-DEFCON level is raised to 2. Don’t be surprised by a Microsoft update before you’re prepared to deal with it!
Anyone can read the full MS-DEFCON Alert (20.06.1, 2023-02-09).
-
MS-DEFCON 4: Patching weather is clearing
ISSUE 20.04.1 • 2023-01-24 By Susan Bradley
In general, the January updates have been well behaved.
So far, I’m not seeing any trending issues with them; accordingly, I’m lowering the MS-DEFCON level to 4. But that’s not to say we haven’t seen some other issues related to other types of updates. In addition to describing those, I’ll discuss a vulnerability in a part of your computer you may never think about.
Two issues recently impacted Start menus and shortcuts but were unrelated to one another.
Anyone can read the full MS-DEFCON Alert (20.04.1, 2023-01-24).
-
MS-DEFCON 2: Getting ready for 2023
ISSUE 20.01.1 • 2023-01-05 By Susan Bradley
Once again, we are preparing for another year of patching.
And to start out the year auspiciously, I must raise the MS-DEFCON level to 2. That’s because I’m recommending that updates to Windows be deferred until later in the month. Although Microsoft takes a long Christmas vacation, and the resulting January is usually limited to just security updates, it’s best to be very cautious until the issues that cropped up in December are resolved.
Anyone can read the full MS-DEFCON Alert (20.01.1, 2023-01-05).
-
MS-DEFCON 3: Windows 10 22H2 may leave you blue
ISSUE 19.52.1 • 2022-12-27 By Susan Bradley
I have a favorite Christmas song titled “We need a little Christmas,” from the Broadway musical “Mame.”
The uplifting tone of the song expresses the pleasure and happiness we experience during the holiday. We don’t usually associate “blue” feelings with the season (except Elvis).
Windows 10 could use a little of that holiday spirit. Unfortunately, two different patches for 22H2 appear to be throwing off blue screens of death for some — but not all — users. As much as I’d like to lower the MS-DEFCON level to the more serene level 4, so you can enjoy the holiday while applying updates, out of caution I am dropping it only one notch.
Anyone can read the full MS-DEFCON Alert (19.52.1, 2022-12-27).
-
MS-DEFCON 2: The maintenance window for Windows closes
ISSUE 19.49.1 • 2022-12-08 By Susan Bradley
This is your last call to install updates.
Businesses typically have a concept in their information technology divisions about maintenance windows. It’s a period of time set aside to install updates, review computer systems, and in general ensure that everything is working as it should.
Consumers and home users should follow a similar concept. Devote a period of time, no matter the platform, to ensure that your devices are working as they should. Then let your maintenance window close. That’s why I’m raising the MS-DEFCON level to 2 — with fresh updates due next week, get the current updates installed now.
Everyone can read the full MS-DEFCON Alert (19.49.1, 2022-12-08).