|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
MS-DEFCON 3: Issues with bootloader patches
ISSUE 19.34.1 • 2022-08-23 
By Susan Bradley
This month’s updates are a great example of why my patching advice differs for consumers and businesses.
For consumer patchers, whether using Windows 10 Home or Professional, I’m not convinced that you need to install KB5012170, Microsoft’s security update for Secure Boot DBX (the Secure Boot Forbidden Signature Database). Unless, that is, you think you will be targeted by an overseas attacker with a malicious bootloader installer. If your computer holds the keys to the nuclear codes, then by all means install this update instantly. The fact that this isn’t clear-cut is the reason I can lower the MS-DEFCON only to 3 this time around.
But if you are a normal user, with normal levels of paranoia to get you through the normal security risks of daily life, I’m not convinced that this update is mandatory. In fact, I think it often causes more pain than benefit. Just read through the threads of many a forum poster trying to get this update installed.
Anyone can read the full MS-DEFCON Alert (19.34.1, 2022-08-23).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
WUMGR & KB5053602 UPDATE/INSTALL FAIL
by 20 minutes ago
-
Finding Microsoft Office 2021 product key
by 1 hour, 20 minutes ago
-
Over-the-Top solves it!
by 11 hours, 51 minutes ago
-
To Susan – Woody Leonhard, the “Lionhearted”
by 18 hours, 52 minutes ago
-
Extracting Data From All Sheets
by 20 hours, 27 minutes ago
-
Use wushowhide in Windows 11 24H2?
by 1 hour, 37 minutes ago
-
Hacktool:Win32/Winring0
by 7 hours, 16 minutes ago
-
Microsoft Defender as Primary Security Question
by 2 hours, 1 minute ago
-
USB printers might print random text with the January 2025 preview update
by 1 hour, 39 minutes ago
-
Google’s 10-year-old Chromecast is busted, but a fix is coming
by 1 day, 8 hours ago
-
Expand the taskbar?
by 1 day, 8 hours ago
-
Gregory Forrest “Woody” Leonhard (1951-2025)
by 2 hours, 34 minutes ago
-
March 2025 updates are out
by 1 hour, 21 minutes ago
-
Windows 11 Insider Preview build 26120.3380 released to DEV and BETA
by 2 days, 2 hours ago
-
Update Firefox to prevent add-ons issues from root certificate expiration
by 2 days, 9 hours ago
-
Latest Firefox requires Password on start up
by 2 days, 4 hours ago
-
Resolved : AutoCAD 2022 might not open after updating to 24H2
by 2 days, 22 hours ago
-
Missing api-ms-win-core-libraryloader-11-2-1.dll
by 1 day, 21 hours ago
-
How Much Daylight have YOU Saved?
by 2 days ago
-
A brief history of Windows Settings
by 1 day, 17 hours ago
-
Thunderbolt is not just for monitors
by 1 day, 16 hours ago
-
Password Generators — Your first line of defense
by 1 day, 21 hours ago
-
AskWoody at the computer museum
by 21 hours, 32 minutes ago
-
Planning for the unexpected
by 1 day, 22 hours ago
-
Which printer type is the better one to buy?
by 3 days ago
-
Upgrading the web server
by 2 days, 22 hours ago
-
New Windows 11 24H2 Setup – Initial Win Update prevention settings?
by 3 days, 17 hours ago
-
Creating a Google account
by 3 days, 16 hours ago
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
by 3 days, 22 hours ago
-
Microsoft Considering AI Models to Replace OpenAI’s in Copilot
by 4 days, 9 hours ago
Remembering Woody
