Newsletter Archives
-
MS-DEFCON 2: Settling down for a stable Windows 10
ISSUE 20.18.1 • 2023-05-04 By Susan Bradley
The order of the day is Windows 10 22H2.
With Patch Tuesday just around the corner, it’s time to defer updates. Therefore, I’m raising the MS-DEFCON level to 2.
However, there is one exception. If you are running Windows 10, update to release 22H2 as soon as possible. If you can’t get to it by Tuesday, defer — but be sure to get it done before the end of May.
Anyone can read the full MS-DEFCON Alert (20.18.1, 2023-05-04).
-
MS-DEFCON 2: Prepare for April showers
ISSUE 20.14.1 • 2023-04-06 By Susan Bradley
The next round of updates is coming soon and may be confusing.
For one thing, it now appears that Windows 10 and Windows 11 updates will diverge. That is reason enough for me to raise the MS-DEFCON level to 2.
Any confusion instantly causes me to recommend deferring updates.
It does not appear that the forthcoming updates for Windows 10 will introduce any changes. They will include only security patches. Microsoft stated:
After March 2023, there are no more optional, non-security preview releases for the supported editions of Windows 10, version 20H2 and Windows 10, version 21H2. Only monthly security update releases will continue for these versions.
Anyone can read the full MS-DEFCON Alert (20.14.1, 2023-04-06).
-
MS-DEFCON 2: March Madness begins
ISSUE 20.10.1 • 2023-03-09 By Susan Bradley
Ready for Windows 11 dribbles?
In addition to waiting for side effects of security patches to manifest themselves, sometimes you need to wait to see the impact of changes from the prior month’s preview updates. This month more than ever, you should to delay or defer to see the impact of the March changes for Windows 11 22H2.
Accordingly, I am raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (20.10.1, 2023-03-09).
-
MS-DEFCON 2: .NET and Remote Desktop
ISSUE 20.06.1 • 2023-02-09 By Susan Bradley
Defer until the February updates are fully understood.
Even though I don’t anticipate any specific problem with February’s updates, it’s always hard to know for sure. For that reason, the MS-DEFCON level is raised to 2. Don’t be surprised by a Microsoft update before you’re prepared to deal with it!
Anyone can read the full MS-DEFCON Alert (20.06.1, 2023-02-09).
-
MS-DEFCON 2: Getting ready for 2023
ISSUE 20.01.1 • 2023-01-05 By Susan Bradley
Once again, we are preparing for another year of patching.
And to start out the year auspiciously, I must raise the MS-DEFCON level to 2. That’s because I’m recommending that updates to Windows be deferred until later in the month. Although Microsoft takes a long Christmas vacation, and the resulting January is usually limited to just security updates, it’s best to be very cautious until the issues that cropped up in December are resolved.
Anyone can read the full MS-DEFCON Alert (20.01.1, 2023-01-05).
-
MS-DEFCON 2: The maintenance window for Windows closes
ISSUE 19.49.1 • 2022-12-08 By Susan Bradley
This is your last call to install updates.
Businesses typically have a concept in their information technology divisions about maintenance windows. It’s a period of time set aside to install updates, review computer systems, and in general ensure that everything is working as it should.
Consumers and home users should follow a similar concept. Devote a period of time, no matter the platform, to ensure that your devices are working as they should. Then let your maintenance window close. That’s why I’m raising the MS-DEFCON level to 2 — with fresh updates due next week, get the current updates installed now.
Everyone can read the full MS-DEFCON Alert (19.49.1, 2022-12-08).
-
MS-DEFCON 2: More “dribbled” changes coming
ISSUE 19.44.1 • 2022-11-03 By Susan Bradley
Defer them.
Microsoft’s incremental protocol for bringing new features to Windows has its good and bad sides. To the good, one or two new features is better than 50 delivered all at once. To the bad, we must study the safety of such updates every month, not every year.
In effect, “dribbling” requires a heightened state of awareness because we’re not dealing just with bug fixes — we must deal with new stuff as well. That increased awareness is reflected in my raising of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.44.1, 2022-11-03).
-
Ready for October’s Patches?
It’s DefCon Tuesday again. Remember Windows 10 22H2 will be out later this month.
We have yet to get the details on the Windows 10/11 ‘moment’ releases – those incremental dribble updates. My gut tells me to look for these starting to come out in the preview updates and as I see the details, I’ll alert you about them as well.
In the meantime for those of you that patch Exchange servers, don’t forget to review the updated guidance regarding those zero day attacks.
For those on Windows 11 22H2 remember Microsoft warned about a file copy slowdown.
Links below as they go public…..
Group policy bug still there and not fixed – impacts business patchers only not home/consumers.
Exchange mail server bug not fixed even though security updates for Exchange were released today.
-
MS-DEFCON 2: Windows 10 22H2 expected this month
ISSUE 19.40.1 • 2022-10-06 By Susan Bradley
We originally had the impression that Windows 10 and 11 updates would appear simultaneously, but — for this time at least — it looks like Windows 10 22H2 will be here in October, a month after Windows 11 2022 (22H2).
As with Windows 11 2022, I am not expecting a major release. As per my usual recommendation, don’t accept the Windows 10 22H2 update right away. Instead, defer it until I’ve had a chance to test and review. That advice also comes with an elevation of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.40.1, 2022-10-06).
-
September updates get released
…and here we go again. Remember our mantra, if you care about your machine ensure that you have a full image backup.
Ensure that you have deferred updates (always check the master patch page for the deferral date) and/or put your computer on “metered” network trick.
79 vulnerabilities
2 publicly disclosed
5 critical
1 exploited
Another print spooler (ugh)
Too soon to tell if the bugs (audio/etc) of last month are included in this update. More as I digest the details.
Updates to this post:
Windows 10 patch does NOT indicate audio issues are triggered in this release.
Other resources include Dustin Childs’ Zero day blog
The one critical bug in TCP/IP impacts IPv6 with IPsec configurations (translations corporations with IPsec so not home and consumer users)
-
MS-DEFCON 2: Printing issues, again
ISSUE 19.31.1 • 2022-08-04 By Susan Bradley
This time we’re forewarned, and the problem probably won’t affect many.
Here we go again. Month after month this year, updates have affected printing in some way, and the side effects have ranged from minor to major (such as printers being completely disabled).
Fasten your seatbelts anyway, although chances are that many of us won’t notice this side effect at all. In fact, the security fix causing this side effect has actually been installed on our systems for over a year. Starting with the July and August updates, “hardening” is finally being enabled. Still, prudence demands raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.31.1, 2022-08-04).
-
July Windows security updates are out
Here we go again where we sit on the sidelines and
watch the carnage…. excuse me review for side effects.In the meantime check out some of the Amazon prime day deals on computers, HP computers and Chromebooks and most importantly for today, external harddrives you can use for backup. While I wouldn’t mind if you bought your way into Windows 11 (after installing start11), I’m still not giving it the all clear for those of you on Windows 10.
Also remember iOS has a beta out for version 16, so for those of you in the Apple ecosystem, expect some changes (more on that in the newsletter)
In the meantime here’s what I’m looking at in terms of security updates (more links as the analysis web pages go live, remember my post dead body recap in Monday’s newsletter:
9:58 am. – Patch Day Dashboard goes live 86 vulnerabilities, 4 critical.