Jon Murphy’s Post

Patch patch patch

Have you ever wondered what your MSP is (or should) be doing? The announcement below is exactly what they should be remediating. How do you as the customer figure if out if their MSP is doing as required to keep you, your directorship, employees, customers and business safe? 💡 Check your contracts and look for the terms in the deliverables section such as patch management (OS, Device, Network or servers) or vunerability management. 💡 Ask them to provide reporting around vunerabilities and compliance management. 💡 Please respect that while reboot reminders are annoying, they are necessary to ensure you stay compliant. Not sure if your provider does this for you? Schedule a meeting at Kavira.com.au

Hey M’soft, It’s a bit late to draw attention to active vulnerabilities - we all need pre-emptive protection from all malware, especially including ‘zero-day’ nasties, whether they are new code or re-packaged code. The answer is deep learning capability. Perhaps re-building algorithms from the ground-up is too expensive for a massive conglomerate (too big to successfully direct and manage?) to invest in. The holding pattern in the marketplace could break you ? Time to cut the loss - millions of customers are knowingly exposed 24/7/365 to the next incidents of active vulnerabilities. Maybe now withdraw from the marketplace and work to enable true cybersecurity protection for your customer-set. Real-time (yep, that’s right !) detection of and prevention from ‘zero-day’ malware intrusions is available now. Try working with DeepInstinct.com It will run along side Windows without impacting performance. A new Win-Win for you guys and your paying customers - upgrade to value for money (remarkable ROI) in cybersecurity. #CEO #CISO #COO #CFO #cybersecurity

Microsoft just dropped a fresh batch of security updates - think of them as vitamins for your computer! They've patched 60 vulnerabilities, including 2 'Critical' ones - because who doesn't love a good cliffhanger? If you're with us at Login, relax! We've updated your systems while you were sipping that coffee. Your IT Systems are safe with us. Not a Login client? It’s time to play catch-up! Slap on those updates like sunscreen on a beach day. Alternatively, you can send me a message and we can talk about securing your IT😁 #cybersecurity #cybersecurityawareness

Australian Signals Directorate's reminder is spot on. The recent CrowdStrike outage highlighted the importance of not just applying patches, but also properly testing them before deploying to critical infrastructure. At IronSights, we advocate for a risk-based approach to auto-updates, ensuring patches are thoroughly tested and prioritised based on potential impact. This balance helps maintain security without risking operational stability. Thankyou for emphasising the critical role of timely patching in cybersecurity. #CyberSecurity #PatchManagement #RiskManagement

When it comes to cybersecurity, patching is critical, but how we patch is just as important. Let’s remember that the key to strong, reliable operations lies in thorough testing before rolling out any updates to production. While auto-patching might seem convenient, it carries risks—as we saw with the recent CrowdStrike outage. This incident reminds us that cutting corners on patch testing can lead to serious disruptions. Instead of rushing, let’s prioritize careful testing in our lower environments, monitoring outcomes closely before promoting changes to production. By doing so, we’re not just following best practices—we’re safeguarding our systems, our work, and our community.

Cybersecurity threats are constantly evolving, so it’s essential to kick off your monthly patching routine for Microsoft systems as soon as new updates are available. Staying on top of these updates helps protect against the latest risks.

8 ‘Critical’ vulnerabilities with 6 vulnerabilities showing evidence of active exploitation. If you havent updated your Microsoft Windows machine and rebooted yet, please go to the bottom right, select “update and restart” and then make yourself a strong cup of tea or coffee / go to the toilet / make that phone call to your folks that youve been meaning to call etc and come back in 10-15 mins.

Keeping systems updated is crucial in protecting your business from cyber attacks. It can feel like a game of whack-a-mole with 100’s of new vulnerabilities discovered every month. Automated patch management and a team regularly checking for open vulnerabilities refuces your cyber risks and lets you and your people focus on customers and revenue. If you need help with your patch and vulnerability management approach reach out to Aretex and our Technology Services team can help.

Use Windows Autopatch to keep up with security updates