Newsletter Archives

• MS-DEFCON 4: Side effects for dual booters

  Posted on August 27, 2024 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.35.1 • 2024-08-27

  

  By Susan Bradley

  Secure Boot is causing — once again — side effects for Windows patchers.

  The August updates are triggering issues for those who dual-boot into Linux. Because this is unlikely to affect very many users, and because the IPv6 bug I alerted you to ten days ago is now well understood, I feel that lowering the MS-DEFCON level to 4 is safe.

  That assumes you do not ignore the IPv6 matter.

  Anyone can read the full MS-DEFCON Alert (21.35.1, 2024-08-27).

  AskWoody Plus Alert, MS-DEFCON Alerts, CVE-2024-38063, KB5041578, KB5041580, KB5041585, MS-DEFCON, MS-DEFCON 4, Patch Lady Posts, Secure Boot, Server 2019

• Threats to businesses

  Posted on August 19, 2024 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.34 • 2024-08-19

  PATCH WATCH

  

  By Susan Bradley

  This month’s updates include fewer vulnerabilities than normal. What is not normal is that some of the bugs have already been exploited.

  I’m not changing my stance about it being wise to wait to see whether there are side effects, but I will review that decision should the need arise. For now, review the special alert.

  There are six bugs under active attack.

  Read the full story in our Plus Newsletter (21.34.0, 2024-08-19).
  This story also appears in our public Newsletter.

  Patch Watch Adobe Acrobat, CVE-2024-38063, CVE-2024-38143, CVE-2024-38173, CVE-2024-38213, KB5020276, KB5040430, KB5040437, Line Printer, Mark of the Web, Newsletters, Patch Lady Posts, Remote Code Execution, Remote Desktop, Secure Boot

• MS-DEFCON 3: Secure Boot triggers recovery keys

  Posted on July 31, 2024 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.31.1 • 2024-07-31

  

  By Susan Bradley

  It’s time to check whether your boot drive is encrypted.

  As I predicted, Microsoft’s July 2024 security update may trigger a request for recovery keys among those who enabled BitLocker or drive encryption. That’s because the update included a change to Secure Boot.

  This is problematic enough that I’m lowering the MS-DEFCON level to just 3, rather than the more common level 4 I usually suggest at the end of the month. I think you should install updates, but don’t install and then review. Instead, understand this problem ahead of time, prepare as needed, and then update.

  Anyone can read the full MS-DEFCON Alert (21.31.1, 2024-07-31.

  AskWoody Plus Alert, MS-DEFCON Alerts, Binarly, BitLocker, Drive Encryption, KB5040430, KB5040437, KB5040525, KB5040527, MS-DEFCON, MS-DEFCON 3, Patch Lady Posts, PKfail, Secure Boot

• MS-DEFCON 4: Safe — for now

  Posted on April 23, 2024 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 21.17.1 • 2024-04-23

  

  By Susan Bradley

  The April updates have been relatively quiet, with some exceptions.

  That’s why I’m lowering the MS-DEFCON level to 4. Most of my concerns lie not with this month’s patches but rather with the timing of future mandates.

  In addition, Microsoft finally acknowledged an “oopsie” with Edge.

  Anyone can read the full MS-DEFCON Alert (21.17.1, 2024-04-23).

  AskWoody Plus Alert, MS-DEFCON Alerts, BitLocker, CVE-2023-24932, Edge, KB5014754, KB5025885, KB5034441, MS-DEFCON, MS-DEFCON 4, Secure Boot, Suggestions

• A deluge of vulnerabilities for April

  Posted on April 15, 2024 at 02:42 CDT by Susan Bradley • Comment in the Forums

  PATCH WATCH

  

  By Susan Bradley

  It’s raining CVEs.

  There are definitely going to be two groups of patchers this month. One will say, “Issues? What issues? My computer updated without issues.”

  The other group will complain about needing a BitLocker recovery key, or that their updates took a long time, or that they were offered a confusing SQL update for a database they didn’t realize they had on their home PC. I’m certainly part of this group — my Windows 10 PC at home took a long time to come back up.

  Let me remind you of some of my standard recommendations, even if you decide to sit on the sidelines and just watch the fun.

  Read the full story in our Plus Newsletter (21.16.0, 2024-04-15).

  Patch Watch Antitrust, BitLocker, BlackLotus, KB5025885, KB5034441, Moment Updates, Newsletters, Patch Lady Posts, Privacy, Secure Boot, UCPD

• A new patching year

  Posted on January 8, 2024 at 02:43 CST by Susan Bradley • Comment in the Forums

  PATCH WATCH

  

  By Susan Bradley

  Tomorrow, as usual, Microsoft will release the January patches.

  Today, as usual, I’m recommending that you not install the patches right away. If you’ve been dealing with and following patching as long as I have, you’ll know that it takes about a week or so for problems to bubble up.

  Side effects are somewhat sporadic — some see them, some don’t. Those who see none sometimes move along to the next vulnerability. Lately, however, Microsoft has been taking a long-term look at vulnerabilities thus and taking several months to implement changes. 2024 looks to be no different, with many long-term issues needing resolution.

  This week’s edition of Patch Watch focuses specifically on business patching and what we may see in the coming months. For consumers, you probably will not have the same side effects or concerns as business patchers.

  Read the full story in our Plus Newsletter (21.02.0, 2024-01-08).

  Patch Watch CVE-2021-42291, CVE-2023-24932, Exchange Server, KB5008383, KB5025885, Newsletters, NTLM, Patch Lady Posts, Secure Boot

• The patching year in review — for consumers

  Posted on December 26, 2023 at 02:42 CST by Susan Bradley • Comment in the Forums

  PATCH WATCH

  

  By Susan Bradley

  We’re closing another patching year for consumers and home users (aka the “unmanaged crowd”).

  Will and I have an ongoing, two-year struggle with a phrase I commonly use, “consumer and home users.” Will thinks it cumbersome and that there is no meaningful difference.

  I define consumers as anyone running Windows Home or Professional editions but not configured in a domain or not using patching tools favored by businesses. Consumers don’t have an IT department (assuming you don’t call the teenager next door an IT department) and don’t use a managed service provider. Consumers usually have a peer-to-peer network (because who doesn’t have multiple devices connected to their Internet service these days?) and may use it to connect to shared devices such as printers. Consumers tend to blur the lines of technology and will use Apple iPads or Android phones right alongside Windows machines.

  Read the full story in our Plus Newsletter (20.52.0, 2023-12-26).

  Patch Watch Apple, Consumers, Drivers, Home PCs, KB5025885, Microsoft, Newsletters, Patch Lady Posts, Repair Install, Secure Boot, Very Small Businesses

• MS-DEFCON 4: Skip those Secure Boot scripts

  Posted on May 23, 2023 at 02:45 CDT by Susan Bradley • Comment in the Forums

  

  ISSUE 20.21.1 • 2023-05-23

  

  By Susan Bradley

  Deploy May updates — and nothing but the updates.

  I’m lowering the MS-DEFCON level to 4 to encourage you to install the May updates now.

  However, I do not recommend taking the optional steps recommended by Microsoft to revoke the vulnerable bootloader files, as I discussed in yesterday’s On Security column. I do not think these manual steps provide full protection for this vulnerability — or potential future ones.

  Anyone can read the full MS-DEFCON Alert (20.21.1, 2023-05-23).

  AskWoody Plus Alert, MS-DEFCON Alerts, MS-DEFCON, MS-DEFCON 4, Secure Boot
• « Older Entries