Newsletter Archives
-
MS-DEFCON 4: Patching weather is clearing
ISSUE 20.04.1 • 2023-01-24 By Susan Bradley
In general, the January updates have been well behaved.
So far, I’m not seeing any trending issues with them; accordingly, I’m lowering the MS-DEFCON level to 4. But that’s not to say we haven’t seen some other issues related to other types of updates. In addition to describing those, I’ll discuss a vulnerability in a part of your computer you may never think about.
Two issues recently impacted Start menus and shortcuts but were unrelated to one another.
Anyone can read the full MS-DEFCON Alert (20.04.1, 2023-01-24).
-
MS-DEFCON 2: Getting ready for 2023
ISSUE 20.01.1 • 2023-01-05 By Susan Bradley
Once again, we are preparing for another year of patching.
And to start out the year auspiciously, I must raise the MS-DEFCON level to 2. That’s because I’m recommending that updates to Windows be deferred until later in the month. Although Microsoft takes a long Christmas vacation, and the resulting January is usually limited to just security updates, it’s best to be very cautious until the issues that cropped up in December are resolved.
Anyone can read the full MS-DEFCON Alert (20.01.1, 2023-01-05).
-
MS-DEFCON 3: Windows 10 22H2 may leave you blue
ISSUE 19.52.1 • 2022-12-27 By Susan Bradley
I have a favorite Christmas song titled “We need a little Christmas,” from the Broadway musical “Mame.”
The uplifting tone of the song expresses the pleasure and happiness we experience during the holiday. We don’t usually associate “blue” feelings with the season (except Elvis).
Windows 10 could use a little of that holiday spirit. Unfortunately, two different patches for 22H2 appear to be throwing off blue screens of death for some — but not all — users. As much as I’d like to lower the MS-DEFCON level to the more serene level 4, so you can enjoy the holiday while applying updates, out of caution I am dropping it only one notch.
Anyone can read the full MS-DEFCON Alert (19.52.1, 2022-12-27).
-
MS-DEFCON 2: The maintenance window for Windows closes
ISSUE 19.49.1 • 2022-12-08 By Susan Bradley
This is your last call to install updates.
Businesses typically have a concept in their information technology divisions about maintenance windows. It’s a period of time set aside to install updates, review computer systems, and in general ensure that everything is working as it should.
Consumers and home users should follow a similar concept. Devote a period of time, no matter the platform, to ensure that your devices are working as they should. Then let your maintenance window close. That’s why I’m raising the MS-DEFCON level to 2 — with fresh updates due next week, get the current updates installed now.
Everyone can read the full MS-DEFCON Alert (19.49.1, 2022-12-08).
-
MS-DEFCON 3: Issues with domains
ISSUE 19.47.1 • 2022-11-22 By Susan Bradley
November updates lead to side effects
My usual advice regarding updates with known side effects is to wait until the problems are resolved. But every so often, the risk of waiting is greater than the risks associated with the side effects.
That’s the way I see the situation now. The November updates require you to slog through the issues and deal with the side effects. For that reason, I’m lowering the MS-DEFCON level to 3. I’d really like to go to 4, but I think greater caution is required.
Anyone can read the full MS-DEFCON Alert (19.47.1, 2022-11-22).
-
MS-DEFCON 2: More “dribbled” changes coming
ISSUE 19.44.1 • 2022-11-03 By Susan Bradley
Defer them.
Microsoft’s incremental protocol for bringing new features to Windows has its good and bad sides. To the good, one or two new features is better than 50 delivered all at once. To the bad, we must study the safety of such updates every month, not every year.
In effect, “dribbling” requires a heightened state of awareness because we’re not dealing just with bug fixes — we must deal with new stuff as well. That increased awareness is reflected in my raising of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.44.1, 2022-11-03).
-
MS-DEFCON 4: Install or defer updates? Your choice.
ISSUE 19.43.1 • 2022-10-25 By Susan Bradley
I’ve got a slightly mixed message about the latest round of updates.
In the most general terms, updates this month have proven safe and unlikely to cause many problems. It is for that reason I am lowering the MS-DEFCON level to 4. But there’s a grain of salt to go along with that recommendation.
I continue to recommend that you not install the feature-release updates for Windows 10 or Windows 11 version 22H2. But I do recommend that you allow the rest of the updates to install. That’s the mixed message.
Anyone can read the full MS-DEFCON Alert (19.43.1, 2022-10-25).
-
MS-DEFCON 2: Windows 10 22H2 expected this month
ISSUE 19.40.1 • 2022-10-06 By Susan Bradley
We originally had the impression that Windows 10 and 11 updates would appear simultaneously, but — for this time at least — it looks like Windows 10 22H2 will be here in October, a month after Windows 11 2022 (22H2).
As with Windows 11 2022, I am not expecting a major release. As per my usual recommendation, don’t accept the Windows 10 22H2 update right away. Instead, defer it until I’ve had a chance to test and review. That advice also comes with an elevation of the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.40.1, 2022-10-06).
-
MS-DEFCON 4: A well-behaved September
ISSUE 19.39.1 • 2022-09-27 By Susan Bradley
September updates have few side effects.
It’s always nice when the monthly update process is calm, with no storms. But due to a few snags, the best I can do is lower the MS-DEFCON level to 4.
These side effects are limited to issues seen in businesses; we ordinary, consumer mortals are not much affected.
Anyone can read the full MS-DEFCON Alert (19.39.1, 2022-09-27).
-
MS-DEFCON 3: Issues with bootloader patches
ISSUE 19.34.1 • 2022-08-23 By Susan Bradley
This month’s updates are a great example of why my patching advice differs for consumers and businesses.
For consumer patchers, whether using Windows 10 Home or Professional, I’m not convinced that you need to install KB5012170, Microsoft’s security update for Secure Boot DBX (the Secure Boot Forbidden Signature Database). Unless, that is, you think you will be targeted by an overseas attacker with a malicious bootloader installer. If your computer holds the keys to the nuclear codes, then by all means install this update instantly. The fact that this isn’t clear-cut is the reason I can lower the MS-DEFCON only to 3 this time around.
But if you are a normal user, with normal levels of paranoia to get you through the normal security risks of daily life, I’m not convinced that this update is mandatory. In fact, I think it often causes more pain than benefit. Just read through the threads of many a forum poster trying to get this update installed.
Anyone can read the full MS-DEFCON Alert (19.34.1, 2022-08-23).
-
MS-DEFCON 2: Printing issues, again
ISSUE 19.31.1 • 2022-08-04 By Susan Bradley
This time we’re forewarned, and the problem probably won’t affect many.
Here we go again. Month after month this year, updates have affected printing in some way, and the side effects have ranged from minor to major (such as printers being completely disabled).
Fasten your seatbelts anyway, although chances are that many of us won’t notice this side effect at all. In fact, the security fix causing this side effect has actually been installed on our systems for over a year. Starting with the July and August updates, “hardening” is finally being enabled. Still, prudence demands raising the MS-DEFCON level to 2.
Anyone can read the full MS-DEFCON Alert (19.31.1, 2022-08-04).
-
MS-DEFCON 4: July updates make some hot and bothered
ISSUE 19.30.1 • 2022-07-26 By Susan Bradley
Access bugs ruin a quiet July, but we can still lower MS-DEFCON to 4.
To any reader of this alert who is sweltering in a heat wave, my sincere condolences. I can slightly relate, as I’m having the normal July heat wave in my neck of the woods.
The big difference is that my area of the country is used to this weather. Thus I’m inside an air-conditioned home, remotely accessing office workstations and servers to perform the monthly maintenance tasks while some of you are … well … just really hot and really uncomfortable. Fortunately for us, this month’s Windows and Office updates were mostly well behaved.
Anyone can read the full MS-DEFCON Alert (19.30.1, 2022-07-25).