Microsoft Patch Tuesday and patch management

Patch management can be a full-time job by itself. Get advice on how to install a security patch, patch deployment, tools, and policy. Also get the latest news on Microsoft Patch Tuesday and vulnerabilities and security patch management updates from other major software vendors .

October 09, 2018 09 Oct'18
October Patch Tuesday grounds JET Database Engine flaw

Administrators have a relatively light workload for October Patch Tuesday, but IT workers should pay attention to multiple workstation fixes and issues with older patches.
September 18, 2018 18 Sep'18
WannaMine cryptojacker targets unpatched EternalBlue flaw

Unpatched systems are still being targeted by the WannaMine cryptojacker, despite warnings and global cyberattacks using the EternalBlue exploit leaked from the NSA.
September 12, 2018 12 Sep'18
Microsoft patches Windows ALPC flaw exploited in the wild

Microsoft's September 2018 Patch Tuesday release included a fix for the Windows ALPC vulnerability that was exploited in the wild for about two weeks before being patched.
September 11, 2018 11 Sep'18
Microsoft shuts down zero-day exploit on September Patch Tuesday

Administrators should prioritize patching systems affected by four public disclosures resolved by the Patch Tuesday updates.

Bring yourself up to speed with our introductory content

Software patch/fix

A software patch or fix helps resolve issues that crop up in different programs. It can also bolster security and add new features to the software. Continue Reading
zero-day (computer)

A zero-day vulnerability, also known as a computer zero day, is a flaw in software, hardware or firmware that is unknown to the party or parties responsible for patching or otherwise fixing the flaw. Continue Reading
backdoor (computing)

A backdoor is a means to access a computer system or encrypted data that bypasses the system's customary security mechanisms. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How does TLBleed abuse the Hyper-Threading feature in Intel chips?

TLBleed exploits Intel's HTT feature to leak data via side-channel attacks. Learn about how TLBleed obtains sensitive memory information from expert Michael Cobb. Continue Reading
Get serious about patch validation and deployment -- fast

Zero-day exploits are more dangerous than ever, but so is applying an untested patch to live systems. Without a strategy to quickly validate patches -- outside of production -- you're playing with fire. Continue Reading
Select the best patch management software for your company

Patch management software enables businesses to prioritize and automatically update systems so that their assets remain secure. See which best fits your infosec strategy. Continue Reading

Learn to apply best practices and optimize your operations.

Patch management programs: Who should run them?

Patch management is a crucial part of enterprise security defenses, but should security teams be in charge of it? Charles Kao explains how to make patching programs successful. Continue Reading
Automated patch management and the challenges from IoT

From creating an inventory to scanning for IoT vulnerabilities, learn the key steps to take when it comes to automating patch management in your company. Continue Reading
Be ready if Microsoft Exchange updates go wrong

Everyone wants a smooth patching process, but things can fall apart despite everyone's best efforts. Develop a solid recovery plan and test it before trouble strikes. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How is the Samba vulnerability different from EternalBlue?

A recently discovered Samba vulnerability bears a striking resemblance to the notorious Windows exploit EternalBlue. Expert Matthew Pascucci compares the two vulnerabilities. Continue Reading
Heartbleed vulnerability: Why does it persist on so many services?

The Heartbleed flaw still impacts almost 200,000 services connected to the internet. Expert Nick Lewis explains why these services remain unpatched and vulnerable. Continue Reading
Why is patching telecom infrastructures such a challenge?

Patching telecom infrastructures presents many challenges. Expert Matthew Pascucci explains those challenges and what can be done to make sure the systems get patched anyway. Continue Reading