Newsletter Archives
-
MS-DEFCON 4: Is Windows 11 really a disaster?
ISSUE 20.39.1 • 2023-09-26 By Susan Bradley
Every month, I read headlines claiming that the latest patches for Windows 11 22H2 are causing major issues and impacting gazillions of users.
Every month, I also note that the deployments of Windows 11 in my home and office are well behaved. Some of that is surely the result of my tender ministrations, such as using an alternate menu system. But for the rest, Windows 11 is not some sort of monster stomping through neighborhoods and ruining lives.
I consider the current updates safe, so I’m lowering the MS-DEFCON level to 4.
Anyone can read the full MS-DEFCON Alert (20.39.1, 2023-09-26).
-
MS-DEFCON 2: Windows 11 21H2 nears end of life
ISSUE 20.36.1 • 2023-09-07 By Susan Bradley
On October 10, 2023, the Home and Pro editions of Windows 11 21H2 will no longer be supported by Microsoft.
Anticipating next week’s Patch Tuesday, I’m raising the MS-DEFCON level to 2. When (and if) the dust settles, we’ll enter another period of safe patching toward the end of the month. I’ll say more then, but you should prepare.
Anyone can read the full MS-DEFCON Alert (20.36.1, 2023-09-07).
-
MS-DEFCON 3: Patch carefully
ISSUE 20.34.1 • 2023-08-22 By Susan Bradley
August can be a weird month where patching is concerned.
I’m lowering the MS-DEFCON level, but with caution. I usually hope to give time near the end of the month for patches to be applied, by lowering the level to 4 and sometimes 5. This time, I’m wishy-washy. Caution is the order of the day, so I’m lowering the level to just 3.
In my house, August represents a tradition — things occur that make me think technology wants to take a vacation, just like the rest of us.
Anyone can read the full MS-DEFCON Alert (20.34.1, 2023-08-22).
-
MS-DEFCON 2: Batten down the hatches for August
ISSUE 20.31.1 • 2023-08-03 By Susan Bradley
I’ve been tracking some side effects that Microsoft has yet to acknowledge.
With Patch Tuesday just around the corner, it’s a good idea to put your favorite deferral solution in place. Some issues I’ve been following for several months are finally fixed in the August security updates, but we’re learning about this only through hints in preview releases.
Set your phasers on stun: I’m raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (20.31.1, 2023-08-03).
-
MS-DEFCON 4: Got 22H2?
ISSUE 20.30.1 • 2023-07-25 By Susan Bradley
If you haven’t updated to Windows 10/11 22H2, now is a good time because I’m lowering the MS-DEFCON level to 4.
This month’s updates have now settled down to the point that I don’t anticipate any issues for the vast majority of readers, nor have I seen any surprises in my testing on Windows 10 or Windows 11.
22H2 is now my recommended version of Windows for both Windows 10 and Windows 11 for all editions and all types of users — with the single exception of gamers.
Anyone can read the full MS-DEFCON Alert (20.30.1, 2023-07-25).
-
MS-DEFCON 2: Last call for 22H2
ISSUE 20.27.1 • 2023-07-06 By Susan Bradley
Starting next week, you will not receive security updates for any version of Windows 10 except 22H2.
If your PC has not received 22H2 via Windows Update, chances are that your PC has a setting keeping Windows on the version you have installed — or corruption in the operating system is preventing the update from being accepted. But Patch Tuesday is just around the corner, so it’s time to become cautious again by raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (20.27.1, 2023-07-06).
-
MS-DEFCON 4: Installing just the updates
ISSUE 20.26.1 • 2023-06-27 By Susan Bradley
If you recall, earlier this month Microsoft released an update that needed some additional steps — manually adding registry keys — to fully protect your machine.
My position on this matter has been that I did not recommend taking the additional steps unless you knew that you or your firm was specifically being targeted. Microsoft’s notes indicated that it would be releasing a future update that would not require manual intervention — and that if you did not install it, you might experience side effects.
Microsoft did not provide any hints about which side effects. Helpful, don’t you think?
Anyone can read the full MS-DEFCON Alert (20.26.1, 2023-06-27).
-
MS-DEFCON 2: Are you still on Windows 10 21H2?
ISSUE 20.23.1 • 2023-06-08 By Susan Bradley
We’re nearly halfway through the 2023 patching year, almost to the end of the road for Windows 10 21H2.
But before we delve into that: Patch Tuesday is just around the corner, so it’s time to get conservative and defer patches. Accordingly, I’m raising the MS-DEFCON level to 2.
Microsoft is indicating that it will “force” 21H2 machines to 22H2, but I have news for them — if you don’t have 22H2 and you are not using one of the methods to hold off on feature releases (Group Policy, registry key, etc.), chances are you have some sort of issue that is blocking the install. Some of the blocks may be driver-related, and some may be the result of underlying corruption in the code that handles patching.
Anyone can read the full MS-DEFCON Alert (20.23.1, 2023-06-08).
-
MS-DEFCON 4: Skip those Secure Boot scripts
ISSUE 20.21.1 • 2023-05-23 By Susan Bradley
Deploy May updates — and nothing but the updates.
I’m lowering the MS-DEFCON level to 4 to encourage you to install the May updates now.
However, I do not recommend taking the optional steps recommended by Microsoft to revoke the vulnerable bootloader files, as I discussed in yesterday’s On Security column. I do not think these manual steps provide full protection for this vulnerability — or potential future ones.
Anyone can read the full MS-DEFCON Alert (20.21.1, 2023-05-23).
-
MS-DEFCON 2: Settling down for a stable Windows 10
ISSUE 20.18.1 • 2023-05-04 By Susan Bradley
The order of the day is Windows 10 22H2.
With Patch Tuesday just around the corner, it’s time to defer updates. Therefore, I’m raising the MS-DEFCON level to 2.
However, there is one exception. If you are running Windows 10, update to release 22H2 as soon as possible. If you can’t get to it by Tuesday, defer — but be sure to get it done before the end of May.
Anyone can read the full MS-DEFCON Alert (20.18.1, 2023-05-04).
-
MS-DEFCON 4: Major April issue, but not from updates
ISSUE 20.17.1 • 2023-04-25 By Susan Bradley
I’m ready to approve the April updates.
Accordingly, I’ve lowered the MS-DEFCON level to 4. This is not to say there are not a few oddities out there, but they will not affect many users.
Most of the unusual behavior in updates this month is due to slow changes that will lead to future enforcement changes.
Microsoft has also pushed off the implementation of the mandatory, number-based, multifactor authentication for Microsoft 365 applications.
Anyone can read the full MS-DEFCON Alert (20.17.1, 2023-04-25).
-
MS-DEFCON 2: Prepare for April showers
ISSUE 20.14.1 • 2023-04-06 By Susan Bradley
The next round of updates is coming soon and may be confusing.
For one thing, it now appears that Windows 10 and Windows 11 updates will diverge. That is reason enough for me to raise the MS-DEFCON level to 2.
Any confusion instantly causes me to recommend deferring updates.
It does not appear that the forthcoming updates for Windows 10 will introduce any changes. They will include only security patches. Microsoft stated:
After March 2023, there are no more optional, non-security preview releases for the supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only monthly security update releases will continue for these versions.
Anyone can read the full MS-DEFCON Alert (20.14.1, 2023-04-06).