This past week, Microsoft released a series of updates and patches, 13 to be exact. Of these 13, 6 have been rated at “critical” as they feature fixes for remote code execution flaws and a patch for the Badlock Bug. The Badlock Bug surfaced in March 2016 and affects the Windows operating system as well as Samba, a free open-source software the allows Windows computers to integrate with Linux or Unix servers.
The Badlock Bug is an elevation of privilege (EoP) attack which allows the attacker to trick the Windows operating system into thinking it has legitimate administrative privileges which can then be used to access protected accounts, lock users out of accounts, and even destroy the entire active directory.
Unfortunately, many businesses don’t have their systems set up to automatically update. These patches don’t just apply to each individual workstation, but server operating systems such as Windows Server 2012 R2 also need to be patched. In order to ensure that your company has the most recent security patches installed, to keep your IT infrastructure protected from vulnerabilities, you need to make sure to regularly and continuously update your software with the latest security patches. A managed IT services provider can help you do this.
Regular Patching with Managed IT Services
A managed IT services provider can assist your business to ensure it is constantly updating with the latest security patches through a managed IT services program. Your managed IT services provider can make sure that all of your employee’s workstations are configured to auto-update each time Windows releases a patch, update, or upgrade. They can also work with you to quickly patch your Windows Server operating systems to keep your data centers, networks, and IT infrastructure protected from outside threats. Your managed IT services provider can set up a regular schedule (say weekly) to come in and run the latest patches on your system. Plus in the event there is a mission critical patch that gets released, your managed IT service provider can contact you right away and head over to make sure any vulnerabilities are fixed as soon as possible.
Identifying New Threats and Providing Guidance and Suggestions
Security vulnerabilities and software bugs often have gaps of time between which the flaw is discovered and a patch is developed. For example, the Badlock Bug surfaced in March but it wasn’t until the second week of April that Microsoft released a patch for the vulnerabilities. As there are often windows of time between discovery and patching, a managed IT service provider can be on hand to offer suggestions to protect systems until the patch is created and released. Usually, the software manufacturer has to develop and distribute the patch, and this takes time to do. In the interim, through your managed IT services program, you can receive suggestions and guidance to safeguard your systems until the patch is released.
Learn more about our managed IT services offerings.
