Updates and patches

Installing software updates and patches is extremely important and can dramatically increase your security posture. In fact, a lot of systems are compromised simply because people have not updated their operating system and/or third party software to patch vulnerabilities.

Please note, updates and patches are available and recommended for more than just operating systems such as Microsoft Windows, Apple’s MacOS or iOS or Google’s Android. Updates and patches are available for 3rd party software as well such as your web browser, word processing applications, antivirus software, apps on your phone, pdf viewer, etc. It’s important to understand updates and patches aren’t just to install new features or repair bugs. One of their main functions is to remediate vulnerabilities and increase the security of the software. Updating your web browser is equally as important as updating your operating system since vulnerabilities in both are discovered all the time. These vulnerabilities are used by attackers ("hackers") to infect or gain access to your computer, phone, etc..  So, installing updates and patches are vital in closing these attack surfaces. Most security professionals and manufacturers recommend setting your software to automatically update to ensure they receive the latest update or patch as soon as it becomes available. If you do not set your software or operating system(s) to update automatically, I suggest setting a calendar reminder to check for updates based on the following time lines:

Weekly for:

  • Anti-virus/anti-malware software
  • Web browser
  • 3rd party, non operating system, applications ("office" applications, business software, pdf readers, compression/zip applications, printer applications, imaging/video programs, etc.)

Monthly for:

  • Operating systems
  • Hardware (printers, network devices, etc.)

By the way, don't forget to update the OS on your tablets and phones as well as all the applications installed.  You should get a notice when an update to the OS is ready, but if you hear/read about an update and your device hasn't alerted you, it may be necessary to initiate it manually.  That's usually in settings either in about phone or the system update section.  I would set the applications to update automatically, but do pay attention to any permission changes.  Sometimes apps will raise permission levels after you have installed them.  I'll go over app permissions in another posting, so be on the lookout for that post, but just know any changes in permissions after install should be analyzed based on any new features of the app.