Executive Summary
- In this edition of our new Cybersecurity 101 series, we’re shining the spotlight on a topic which impacts any business leveraging digital solutions today: updates and patching.
- We’ll dig in and help you to better understand why the updating and patching process is more than just a routine IT task – it’s your first line of defence against the rising tide of cyberthreats in the UK and beyond.
- Our expert team will also share some of the very best practices for top-tier cybersecurity and explain the importance of staying proactive in a constantly evolving digital landscape.
Introduction
With so much of business software now hosted in the cloud, it’s easy to assume you’re always protected from cyberthreats.
After all, global security teams at big tech companies are always working to keep cloud-based software as secure as possible… right?
While it’s true that cloud software is safer than it’s ever been, here’s the reality: there are still plenty of threats out there – and they’re evolving to target cloud-based systems, too.
This rising wave of cybersecurity concerns is one of the reasons we started our Cybersecurity 101 series. With this regular blog series, we aim to keep you (and your organisation) informed and prepared.
In this edition, we’re looking at a topic which impacts all organisations leveraging digital platforms: updates and patching.
Why updates and patching matters
Imagine this: a security hole is discovered in a popular software – something like Microsoft Office, Adobe Reader or even the Windows 11 operating system.
As soon as a threat like this is detected, the good guys (those are the developers) begin working tirelessly to patch it up. But here’s the catch – the bad guys know about this security hole too, and they want to exploit it as widely and as quickly as possible.
In short, this means that, as soon as the vulnerability is discovered, it’s a to plug the hole before the bad guys exploit it. We’ve talked about this type of vulnerability (and its dangers) in previous blog posts here on the Get Support blog.
So, what does mean for you as an SME working with digital and cloud-based platforms today? It’s simple: updates and patching are absolute non-negotiables in the cybersecurity world.
But, with so many devices and platforms, how do you begin to stay on top of your updates and patching processes?
Updates and patching: Best practices
In the context of zero-day exploits which can strike at any time, staying updated isn’t just good practice – it’s essential.
Here’s a guide to the areas you should focus on to ensure your systems remain in tip-top shape:
- Operating System (OS). Whether you’re using Microsoft Windows, macOS, or Linux, it’s essential to always keep your OS up to date. These systems frequently release security patches to counteract the latest threats. For example, in the Microsoft family, Windows Update (for both Windows 10 and 11) not only provides feature enhancements, but also delivers crucial security patches that protect your system from vulnerabilities.
- Locally installed software. Whether it’s your web browser or a productivity suite like Microsoft Office, keeping apps installed to your local device update is also vital. Outdated software can be a critical gateway for cyber threats, and when this happens software providers, like Apple, Adobe, and Microsoft, often release patches to fix vulnerabilities which have been discovered since the last update.
- Device drivers. These are essential components which, in a nutshell, allow your computer’s hardware and software to communicate. Old or outdated drivers can quickly (and unknowingly) become a weak link in your cybersecurity chain, so it’s important to keep them updated. Manufacturers often release driver updates to improve hardware performance and patch security loopholes, so check their websites for update details – or just ask your Get Support account manager.
- Device firmware. The easiest way to think of firmware is as low-level software which runs your hardware. It’s easy to do, but try your best not to neglect firmware updates. Ensure all firmware – from your PC’s BIOS to your peripherals, like keyboards and mice – is current. From time to time, manufacturers will release firmware updates to address potential security risks and improve device functionality, and you can usually find quick downloads for firmware updates somewhere in the device settings.
One important thing to remember outside of specific platforms is timeliness.
Our advice is that you aim to install patches within 14 days of their release – ideally as soon as they’re released. The sooner you plug the hole, the better. Cybercriminals are always on the lookout for systems that lag in updates, meaning time is always of the essence.
Going beyond software (and when things go wrong)
Bolstering your digital defence isn’t just about the software on your computer. It’s also about the other less immediately obvious devices you have operating within your organisation’s network.
Think about the printers churning out your reports, the switches connecting your networks, and the routers directing your data. These devices, easily overlooked, can be susceptible to vulnerabilities. Just like your software, they too need timely updates and patches to remain secure.
But let’s be honest – updates and patching isn’t always smooth sailing.
Sometimes, the process can even be a double-edged sword. An update might introduce a new bug, or a patch might not play well with certain configurations. This can lead to the dreaded system rollback or, worse, downtime. It’s a delicate balance between staying updated and ensuring stability. If this is a concern, your Get Support account manager is always here to help you keep things in balance.
How to stay on top of updates and patching in your organisation
Staying on top of all of these updates isn’t easy, but if you’re a Get Support client, you’re in luck.
That’s because you benefit from our enterprise-class patch management software, ensuring everything runs seamlessly. But we don’t stop there. We recommend deploying a vulnerability scanning solution as a proactive solution to monitor and identify any unpatched devices within your network, ensuring no stone is left unturned.
Want more expert insights to keep your business security as tight as possible? Keep an eye on the Get Support blog for the next edition of our Cybersecurity 101 series soon. Have a question in the meantime? Ask your account manager or drop us a line on 01865 594 000. We’re here to help.