ISSUE 17.4.1 • 2020-01-27


MS-DEFCON 3: Go ahead and install January patches

Woody Leonhard

By Woody Leonhard

Normally, I wait at least two or three weeks after Patch Tuesday to give the “go-ahead” for installing Microsoft’s monthly patches.

However, this month’s a bit different. In a welcome change, the patches are relatively well-behaved. Moreover, white-hat security researchers are getting closer to fabricating proof-of-concept exploit scenarios based on the CurveBall security hole (more info).

Fortunately, we aren’t anywhere close to full-on, in-the-wild attacks, regardless of what you might have read in the mainstream press for the past two weeks. That said, the threat pendulum has swung to the point where the benefits of patching outweigh any potential problems — in my opinion, anyway.

In related news, it now looks like we’re going to get another free security patch for Windows 7. Still not sure what’ll be included. Stay tuned.

Details in Computerworld. Remember that we’ve got your back — and we’ll answer your questions — on the AskWoody Lounge.

Publisher: AskWoody LLC (; editor: Tracey Capen (

Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. AskWoody, Windows Secrets Newsletter,, WinFind, Windows Gizmos, Security Baseline, Perimeter Scan, Wacky Web Week, the Windows Secrets Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of AskWoody LLC. All other marks are the trademarks or service marks of their respective owners.

Your email subscription:

Copyright © 2020 AskWoody LLC, All rights reserved.