Patch Tuesday

Yesterday was Patch Tuesday – so get ready for your Windows PC to ask you to rebbot your machine – even though you are in the middle of a job – read about that here.

What is fixed this month?

The headlines are- as it is every month – this release fixes critical flaws and zero-day threats that are being exploited in the wild – so get the patch done and check your team has done it – or get your cyber security partner to check for you.

Here are the release notes from Microsoft:

March 2023 Security Updates – Release Notes – Security Update Guide – Microsoft

And a more friendly description from Bleeping Computer:

Microsoft March 2023 Patch Tuesday fixes 2 zero-days, 83 flaws (bleepingcomputer.com)

Remember you can get notifications from Smart Thinking when a major flaw is discovered in mainstream software packages, as they become known and often before a patch is available, so you can take your own precautions.

Other Vendors

Remember other vendors also release major patches on or around Microsoft’s Patch Tuesday – so keep your eye for those that impact your organisation.

This article from The Register highlights updates for Chrome, Adobe, SAP, Android, etc. Adobe had 105 fixes!

Microsoft and Fortinet fix bugs under active exploit • The Register

Clive Catton MSc (Cyber Security) – by-line and other articles

Further Reading

Don’t Skip That Restart – Octagon Technology

How Microsoft Patch Tuesday can help your cyber security planning – CyberAwake

My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.