Newsletter Archives
-
MS-DEFCON 2: Getting ready for 2023
ISSUE 20.01.1 • 2023-01-05 By Susan Bradley
Once again, we are preparing for another year of patching.
And to start out the year auspiciously, I must raise the MS-DEFCON level to 2. That’s because I’m recommending that updates to Windows be deferred until later in the month. Although Microsoft takes a long Christmas vacation, and the resulting January is usually limited to just security updates, it’s best to be very cautious until the issues that cropped up in December are resolved.
Anyone can read the full MS-DEFCON Alert (20.01.1, 2023-01-05).
-
MS-DEFCON 2: The maintenance window for Windows closes
ISSUE 19.49.1 • 2022-12-08 By Susan Bradley
This is your last call to install updates.
Businesses typically have a concept in their information technology divisions about maintenance windows. It’s a period of time set aside to install updates, review computer systems, and in general ensure that everything is working as it should.
Consumers and home users should follow a similar concept. Devote a period of time, no matter the platform, to ensure that your devices are working as they should. Then let your maintenance window close. That’s why I’m raising the MS-DEFCON level to 2 — with fresh updates due next week, get the current updates installed now.
Everyone can read the full MS-DEFCON Alert (19.49.1, 2022-12-08).
-
MS-DEFCON 2: More “dribbled” changes coming
ISSUE 19.44.1 • 2022-11-03 By Susan Bradley
Defer them.
Microsoft’s incremental protocol for bringing new features to Windows has its good and bad sides. To the good, one or two new features is better than 50 delivered all at once. To the bad, we must study the safety of such updates every month, not every year.
In effect, “dribbling” requires a heightened state of awareness because we’re not dealing just with bug fixes — we must deal with new stuff as well. That increased awareness is reflected in my raising of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.44.1, 2022-11-03).
-
Ready for October’s Patches?
It’s DefCon Tuesday again. Remember Windows 10 22H2 will be out later this month.
We have yet to get the details on the Windows 10/11 ‘moment’ releases – those incremental dribble updates. My gut tells me to look for these starting to come out in the preview updates and as I see the details, I’ll alert you about them as well.
In the meantime for those of you that patch Exchange servers, don’t forget to review the updated guidance regarding those zero day attacks.
For those on Windows 11 22H2 remember Microsoft warned about a file copy slowdown.
Links below as they go public…..
Group policy bug still there and not fixed – impacts business patchers only not home/consumers.
Exchange mail server bug not fixed even though security updates for Exchange were released today.
-
MS-DEFCON 2: Windows 10 22H2 expected this month
ISSUE 19.40.1 • 2022-10-06 By Susan Bradley
We originally had the impression that Windows 10 and 11 updates would appear simultaneously, but — for this time at least — it looks like Windows 10 22H2 will be here in October, a month after Windows 11 2022 (22H2).
As with Windows 11 2022, I am not expecting a major release. As per my usual recommendation, don’t accept the Windows 10 22H2 update right away. Instead, defer it until I’ve had a chance to test and review. That advice also comes with an elevation of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.40.1, 2022-10-06).
-
September updates get released
…and here we go again. Remember our mantra, if you care about your machine ensure that you have a full image backup.
Ensure that you have deferred updates (always check the master patch page for the deferral date) and/or put your computer on “metered” network trick.
79 vulnerabilities
2 publicly disclosed
5 critical
1 exploited
Another print spooler (ugh)
Too soon to tell if the bugs (audio/etc) of last month are included in this update. More as I digest the details.
Updates to this post:
Windows 10 patch does NOT indicate audio issues are triggered in this release.
Other resources include Dustin Childs’ Zero day blog
The one critical bug in TCP/IP impacts IPv6 with IPsec configurations (translations corporations with IPsec so not home and consumer users)
-
MS-DEFCON 2: Printing issues, again
ISSUE 19.31.1 • 2022-08-04 By Susan Bradley
This time we’re forewarned, and the problem probably won’t affect many.
Here we go again. Month after month this year, updates have affected printing in some way, and the side effects have ranged from minor to major (such as printers being completely disabled).
Fasten your seatbelts anyway, although chances are that many of us won’t notice this side effect at all. In fact, the security fix causing this side effect has actually been installed on our systems for over a year. Starting with the July and August updates, “hardening” is finally being enabled. Still, prudence demands raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.31.1, 2022-08-04).
-
July Windows security updates are out
Here we go again where we sit on the sidelines and
watch the carnage…. excuse me review for side effects.In the meantime check out some of the Amazon prime day deals on computers, HP computers and Chromebooks and most importantly for today, external harddrives you can use for backup. While I wouldn’t mind if you bought your way into Windows 11 (after installing start11), I’m still not giving it the all clear for those of you on Windows 10.
Also remember iOS has a beta out for version 16, so for those of you in the Apple ecosystem, expect some changes (more on that in the newsletter)
In the meantime here’s what I’m looking at in terms of security updates (more links as the analysis web pages go live, remember my post dead body recap in Monday’s newsletter:
9:58 am. – Patch Day Dashboard goes live 86 vulnerabilities, 4 critical.
-
MS-DEFCON 2: Pause to review
ISSUE 19.27.1 • 2022-07-07 By Susan Bradley
We’re halfway through the patching year.
It seems like just yesterday when I lowered the MS-DEFCON level to allow a cautious breather so we could apply critical patches. Oh, wait — that’s right, it was just last week.
In June, Patch Tuesday fell on the latest day of the month possible: the 14th. It takes all of us patch watchers a little bit of time to assess the safety of the last round of updates — and before you know it, the next Tuesday is upon us. So after little more than a week, it’s time to pause updates again. Accordingly, I am raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.27.1, 2022-07-07).
-
June updates are out
Where I live it’s stone fruit season – Peaches and plums are sweet and ripe.
Where we ALL live around the world, it’s that time of the month where Redmond releases Windows updates. Even if you don’t use Windows anymore it’s the day I always review browsers on all of my devices to ensure they are up to date.
And here we go… https://patchtuesdaydashboard.com/
Remember today is not the day to be installing updates unless you are one of those kind people that LIKE to be our beta testers and have a backup. The rest of us have deferrals in place. I’ll be updating this post during the day with early trends, and keep an eye on the Master Patch list that I will update at the end of the date and consistently after that with info. The full report will come out in next Monday’s newsletter.
60 vulnerabilities
3 critical
0 under active attack.
Unsure if the zero day has been fixed, hang loose.Zero day Follina a
nd Dogpatch has been fixed, if you used the group policy workaround you can decide if you want to leave it or not, I would leave the Attack surface reduction rules in place. If you are using 0Patch it will leave resident memory once you’ve installed the update. Dogpatch has not bee fixed, but I honestly don’t see as much concern on that one – more about this in the newsletter.IE drops out of support BUT not removed from your computer. More on this in the newsletter.
SQL server has security updates – haven’t seen that in a long time https://www.catalog.update.microsoft.com/Search.aspx?q=Security+Update+for+SQL+Server
6/15/2022 edit: Possible wifi connectivity issues after June patches installed on Windows 10 and Windows 11 — link here.
-
MS-DEFCON 2: Zero days unpatched
ISSUE 19.23.1 • 2022-06-09 By Susan Bradley
Once again, we are faced with several zero days that are plaguing Office and Windows.
Accordingly, I am raising the MS-DEFCON alert level to 2.
At this time, the vulnerabilities are being used in targeted attacks and ones that are more probing in nature (probes test the ability of the attack to get in but don’t take action). So far, we have not seen widespread attacks, but there are some ways you can proactively protect yourself.
Anyone can read the full MS-DEFCON Alert (19.23.1, 2022-06-09).
-
MS-DEFCON 2: 2004 is out of support
ISSUE 19.18.1 • 2022-05-05 By Susan Bradley
Check your Windows version, then update accordingly.
I regularly come across PCs that are running old, out-of-support versions of Windows because they aren’t on the Web long enough to be “serviced” by Windows Update. For example, there are two Surface laptops in my office that are used by people on cellular connections. As a result of sporadic use, they never get a feature update.
Just the other day, I realized they were running Windows 10 2004 and thus no longer were getting security updates, a serious matter.
Anyone can read the full MS-DEFCON Alert (19.18.1, 2022-05-05).