Its the most wonderful time of the year – Patching

does that say patching plaster or patch faster? 😉

Remember back when Summer and Christmas break was a high time of concern.  The kids were out of college and ready to try out their skills.  Christmas was worse because so many people were out of the office, no one would notice.  Or if they did the response would be limited.   Now that’s what we call Tuesday afternoon.  Now days, the sysadmins have to deal not just with college code projects, but insider threat, money motivated attackers, and nation states.

This week, Microsoft’s “out-of-band” security update reminded me of the old times.    An out-of-band update is simply a unscheduled one.  Its released out of the regular schedule because it is currently being exploited.  This lends a sense of urgency.    Some companies may have already bypassed December updates because of staffing, or scheduling.  Anyone in retail certainly has a change freeze in effect.  Now on top of that there is a special update for Internet Explorer.

Information about the update for Internet Explorer is available here : 

One Comment

  1. There’s never a holiday or vacation for the IS Janitorial staff, if we take off they attack.
    PCI giving us 30 days for critical fixes, orgs should be able to put this IE out-of-band in January patch schedule and still be compliant.

    Home users, Do nothing and let the automatic updates work their magic. If you click that ‘check for patches’ button as they trained us, you’re now opting in to be a Microsoft “beta tester”.

Comments are closed.