0141 212 22400131 357 1450Get a quote
LogoColourLogoWhite

Guide to Windows security updates

An important piece of a good cybersecurity policy is keeping all your company devices properly updated. This means updating applications, device firmware, and the operating system of computers and other devices regularly.

Updates include several components, such as new features, bug fixes, and security patches. The security updates are the most important as they seal up found vulnerabilities in software.

Approximately 60% of data breaches occur due to unpatched system vulnerabilities.

All too often, companies don’t have a system for installing these updates, so their devices are left unpatched and become easy targets for cyberattacks.

Windows security updates are important patches that are issued on the 2nd Tuesday of every month, a day dubbed as “Microsoft Patch Tuesday.” Most Microsoft products will follow this schedule, though occasionally patches can be issued at other times if there is a need.

It’s important to understand the cycle of Windows security updates because several negative things can impact your organisation if you do not keep your PCs updated properly.

These can include:

·       Higher Risk of a Cyberattack: You have a much higher risk of falling victim to a cyberattack if you do not keep your Windows OS properly updated. For example, the past “Patch Tuesday” addressed vulnerabilities that allowed remote code execution and unauthorised elevation of privileges in a system.

·       Less Productive Employees: Updates often include bug fixes, and if you leave these unpatched, your employees can continue to have to struggle with workarounds. This makes them less productive than if the bug was addressed.

·       Compatibility Issues: Windows updates can often include compatibility enhancements to keep up with new technologies.

What You Need to Know About Windows Security Updates

Find Full Details on Each Update

You can visit Microsoft’s Update Guide to read about the fixes provided in each Windows security update and the exact security issues that the update addressed.

Get Email Notifications of Important Updates

You can get email notifications when security updates are issued, so you’ll know that your devices need to apply new patches.

Sign up for security update email alerts here. Note, you must subscribe with a Microsoft email account, so if you don’t already have one, you’ll be prompted to create one.

You can also follow Microsoft’s official account for its security response centre to get Windows security update news at @msftsecresponse

What Do the Severity Levels Mean?

Each Windows and Microsoft Security Update has a severity level. While you should apply any update, no matter the severity level, it will alert you to particularly critical patches and that should potentially be applied immediately before your next scheduled update cycle.

Here’s an overview of the security levels you’ll see on each Microsoft security update:

·       Critical: This is a fix to a vulnerability that would allow a hacker to execute remote code, possibly taking over a system. This may include self-propagating malware or a hack that allows code execution without any user warnings. These updates should be applied immediately.

·       Important: The next step down in severity is “important.” This is a fix for a vulnerability that could result in a compromise of integrity, user data, or confidentiality. This could include a scenario where data is compromised without warnings or user prompts. These updates should be applied at the earliest opportunity.

·       Moderate: This is a lesser vulnerability that may impact authentication requirements or impacts to non-default configurations. You can install this type of security update during your normal update cycle.

·       Low: The impact of low-severity vulnerabilities would be to mitigate a component characteristic that could potentially cause a system to be compromised. This is not a vital patch, and Microsoft typically recommends that the customer evaluate the need to apply this level of patch with IT teams.

Where Are Security Patches Found?

Each Windows PC has an area in the settings where you can check for updates. Just use the search bar on the taskbar (Windows 10) or the search icon on the taskbar (Windows 11) and type in “updates” to check for updates that need to be installed.

However, for businesses that have more than one PC, the best way to handle all your device updates is through managed IT services. Working with a managed IT provider ensures that all your updates and security patches are being applied in a timely manner, especially thos/knowledge-hub/can-managed-it-support-really-save-my-company-money/e critical ones!

Additionally, it’s not only your Windows updates that we handle. We can ensure that all other software you’re using on PCs, servers, and other devices are being properly patched and updated each month.

Reduce Risk by Having Your Security Updates Handled Automatically

Unpatched system vulnerabilities often leave companies at risk of being breached. BrightSkye can help your UK business improve your security and lower risk by professionally managing all your device updates.

Contact us today to schedule a consultation at 0141 212 2240 or reach out online.

References linked to:

https://securityboulevard.com/2019/10/60-of-breaches-in-2019-involved-unpatched-vulnerabilities/

https://msrc.microsoft.com/update-guide

microsoft.com/en-us/msrc/technical-security-notifications?rtc=1

Can managed IT support save my company money? (brightskye.uk)

Menu