|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
Newsletter Archives
-
MS-DEFCON 3: Cleanup time
ISSUE 22.16.1 • 2025-04-22 
By Susan Bradley
After every Patch Tuesday, there is a period I call “cleanup time.”
By the end of the week, side effects start to pop up. Even though Microsoft does not usually document its patches well, we at least know which updates have been released and have had a chance to read through the release notes.
This time, side effects appear to be widespread. I have therefore set the MS-DEFCON level to 3. Patch as necessary but check your results carefully.
Anyone can read the full MS-DEFCON Alert (22.16.1, 2025-04-22).
-
MS-DEFCON 3: Blocking a potential wormable event
ISSUE 21.33.1 • 2024-08-16 By Susan Bradley
It’s been a long time since we’ve had a Microsoft worm event.
Last week’s patches contained a fix for the Windows TCP/IP Remote Code Execution Vulnerability identified as CVE-2024-38063. This one affects all supported Windows versions and extends back to Windows 7 and Windows 8, including older servers.
This CVE has a very high danger rating. Because of that, I am lowering the MS-DEFCON level earlier than I normally would, setting it to 3. That sounds backward, but this advisory is conditional, based upon the type of user you are and how you decide to deal with the update.
Although the danger is real, I believe the risk is somewhat less. In this alert, I’ll explain why.
Anyone can read the full MS-DEFCON Alert (21.33.1, 2024-08-16).
-
MS-DEFCON 3: Secure Boot triggers recovery keys
ISSUE 21.31.1 • 2024-07-31 By Susan Bradley
It’s time to check whether your boot drive is encrypted.
As I predicted, Microsoft’s July 2024 security update may trigger a request for recovery keys among those who enabled BitLocker or drive encryption. That’s because the update included a change to Secure Boot.
This is problematic enough that I’m lowering the MS-DEFCON level to just 3, rather than the more common level 4 I usually suggest at the end of the month. I think you should install updates, but don’t install and then review. Instead, understand this problem ahead of time, prepare as needed, and then update.
Anyone can read the full MS-DEFCON Alert (21.31.1, 2024-07-31.
-
MS-DEFCON 3: Consumers get a break
ISSUE 21.13.1 • 2024-03-27 By Susan Bradley
Business patchers take heed.
Usually, monthly updates have the same impact on both business and consumer PCs. This month, applying patches to consumer machines is generally safe, which would have earned a MS-DEFCON level of 4. But business machines are another matter; I’ve lowered the level to 3.
For the most part, I think the business issues are resolved as of the publication of this alert. But we’re experiencing one of those media frenzies which is vastly overstating the occurrence of blue screens of death (BSOD).
Anyone can read the full MS-DEFCON Alert (21.13.1, 2024-03-27).
-
MS-DEFCON 3: A bumpy start to 2024
ISSUE 21.05.1 • 2024-01-30 By Susan Bradley
The partition-sizing problem that emerged earlier this month is not yet fixed.
Fortunately, our deep examination of this bug has revealed nothing of a dangerous nature. Therefore, I am lowering the MS-DEFCON level to 3. It’s now time to carefully install the January updates.
We continue to monitor the problem, described in KB5034441 for Windows 10 22H2 and in KB5034440 for Windows 11. Some, but not all, Windows 10 PCs are affected. I have urged you to check your partitions for issues with installing this update. We have written extensively about the problems, and the forums have been very active (see the From the Forums article in yesterday’s newsletter).
Anyone can read the full MS-DEFCON Alert (21.05.1, 2024-01-30).
-
MS-DEFCON 3: A slightly bumpy November
ISSUE 20.48.1 • 2023-11-28 By Susan Bradley
For most Windows 10 and 11 users, including me, there have been no side effects as a result of November’s updates.
Nonetheless, there appear to be a few potholes in the road. That’s enough to make me cautious — I’m lowering the MS-DEFCON level to only 3.
One thing I did notice was updates taking more time to complete than usual — not a good sign. At the very least, it’s a good reason to take a look at the update history in Settings.
Anyone can read the full MS-DEFCON Alert (20.48.1, 2023-11-28).
-
MS-DEFCON 3: Should you patch? It depends.
ISSUE 20.43.1 • 2023-10-24 By Susan Bradley
The October updates have been either mildly annoying or downright hostile.
Stop the presses: I’m urging caution by lowering the MS-DEFCON level to 3.
A big reason for this is that many folks are experiencing multiple reboots after patches are applied. We normally expect one reboot — one reboot only — when we patch. In theory, all updates should download the parts they need, install the updates, and then reboot. Only when all are installed and the system is ready should it reboot.
But not this month. Some of us received three updates, each of which triggered a reboot.
Anyone can read the full MS-DEFCON Alert (20.43.1, 2023-10-24).
-
MS-DEFCON 3: Patch carefully
ISSUE 20.34.1 • 2023-08-22 By Susan Bradley
August can be a weird month where patching is concerned.
I’m lowering the MS-DEFCON level, but with caution. I usually hope to give time near the end of the month for patches to be applied, by lowering the level to 4 and sometimes 5. This time, I’m wishy-washy. Caution is the order of the day, so I’m lowering the level to just 3.
In my house, August represents a tradition — things occur that make me think technology wants to take a vacation, just like the rest of us.
Anyone can read the full MS-DEFCON Alert (20.34.1, 2023-08-22).
-
MS-DEFCON 3: Windows 10 22H2 may leave you blue
ISSUE 19.52.1 • 2022-12-27 By Susan Bradley
I have a favorite Christmas song titled “We need a little Christmas,” from the Broadway musical “Mame.”
The uplifting tone of the song expresses the pleasure and happiness we experience during the holiday. We don’t usually associate “blue” feelings with the season (except Elvis).
Windows 10 could use a little of that holiday spirit. Unfortunately, two different patches for 22H2 appear to be throwing off blue screens of death for some — but not all — users. As much as I’d like to lower the MS-DEFCON level to the more serene level 4, so you can enjoy the holiday while applying updates, out of caution I am dropping it only one notch.
Anyone can read the full MS-DEFCON Alert (19.52.1, 2022-12-27).
-
MS-DEFCON 3: Issues with domains
ISSUE 19.47.1 • 2022-11-22 By Susan Bradley
November updates lead to side effects
My usual advice regarding updates with known side effects is to wait until the problems are resolved. But every so often, the risk of waiting is greater than the risks associated with the side effects.
That’s the way I see the situation now. The November updates require you to slog through the issues and deal with the side effects. For that reason, I’m lowering the MS-DEFCON level to 3. I’d really like to go to 4, but I think greater caution is required.
Anyone can read the full MS-DEFCON Alert (19.47.1, 2022-11-22).
-
MS-DEFCON 3: Issues with bootloader patches
ISSUE 19.34.1 • 2022-08-23 By Susan Bradley
This month’s updates are a great example of why my patching advice differs for consumers and businesses.
For consumer patchers, whether using Windows 10 Home or Professional, I’m not convinced that you need to install KB5012170, Microsoft’s security update for Secure Boot DBX (the Secure Boot Forbidden Signature Database). Unless, that is, you think you will be targeted by an overseas attacker with a malicious bootloader installer. If your computer holds the keys to the nuclear codes, then by all means install this update instantly. The fact that this isn’t clear-cut is the reason I can lower the MS-DEFCON only to 3 this time around.
But if you are a normal user, with normal levels of paranoia to get you through the normal security risks of daily life, I’m not convinced that this update is mandatory. In fact, I think it often causes more pain than benefit. Just read through the threads of many a forum poster trying to get this update installed.
Anyone can read the full MS-DEFCON Alert (19.34.1, 2022-08-23).
-
MS-DEFCON 3: Should we patch?
ISSUE 19.26.1 • 2022-06-28 By Susan Bradley
I have good news and bad news.
Some of you will install the June updates and see absolutely no issues whatsoever. Others have tried to install the June updates and experienced side effects. Microsoft has acknowledged some, but not all, of the issues. This makes it a hard month. I don’t like to let people get to the end of the month and not install updates, but at the same time there are some bugs that are deeply impactful to both consumers and businesses.
Based upon my recommendations below, I am lowering the MS-DEFCON level to 3. I commonly set the level to 4 after giving the month’s updates a chance to settle, but this time greater caution is warranted.
Anyone can read the full MS-DEFCON Alert (19.26.1, 2022-06-28).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Malicious Go Modules disk-wiping malware
by 25 minutes ago
-
Multiple Partitions?
by 6 hours, 35 minutes ago
-
World Passkey Day 2025
by 5 hours, 58 minutes ago
-
Add serial device in Windows 11
by 21 hours, 12 minutes ago
-
Windows 11 users reportedly losing data due forced BitLocker encryption
by 8 hours, 49 minutes ago
-
Cached credentials is not a new bug
by 1 day, 1 hour ago
-
Win11 24H4 Slow!
by 1 day, 1 hour ago
-
Microsoft hiking XBox prices starting today due to Trump’s tariffs
by 23 hours, 8 minutes ago
-
Asus adds “movement sensor” to their Graphics cards
by 1 day, 4 hours ago
-
‘Minority Report’ coming to NYC
by 1 day ago
-
Apple notifies new victims of spyware attacks across the world
by 1 day, 12 hours ago
-
Tracking content block list GONE in Firefox 138
by 1 day, 12 hours ago
-
How do I migrate Password Managers
by 20 hours, 2 minutes ago
-
Orb : how fast is my Internet connection
by 21 hours, 51 minutes ago
-
Solid color background slows Windows 7 login
by 2 days ago
-
Windows 11, version 24H2 might not download via Windows Server Updates Services
by 1 day, 22 hours ago
-
Security fixes for Firefox
by 23 hours, 27 minutes ago
-
Notice on termination of services of LG Mobile Phone Software Updates
by 2 days, 11 hours ago
-
Update your Apple Devices Wormable Zero-Click Remote Code Execution in AirPlay..
by 2 days, 20 hours ago
-
Amazon denies it had plans to be clear about consumer tariff costs
by 2 days, 11 hours ago
-
Return of the brain dead FF sidebar
by 1 day, 22 hours ago
-
Windows Settings Managed by your Organization
by 1 day, 1 hour ago
-
Securing Laptop for Trustee Administrattor
by 3 hours, 29 minutes ago
-
The local account tax
by 1 day, 23 hours ago
-
Recall is back with KB5055627(OS Build 26100.3915) Preview
by 3 days, 9 hours ago
-
Digital TV Antenna Recommendation
by 3 days, 1 hour ago
-
Server 2019 Domain Controllers broken by updates
by 3 days, 21 hours ago
-
Google won’t remove 3rd party cookies in Chrome as promised
by 3 days, 22 hours ago
-
Microsoft Manager Says macOS Is Better Than Windows 11
by 4 days, 2 hours ago
-
Outlook (NEW) Getting really Pushy
by 3 days, 4 hours ago
Remembering Woody
