Here are a couple of examples from the recent cyber-tech press of examples of software vulnerabilities that need patching… Promptly!
Microsoft releases Exchange hotfixes for security update issues – BleepingComputer
ArcaneDoor hackers exploit Cisco zero-days to breach govt networks – BleepingComputer
The first illustrates that management is needed as not all patching goes as smoothly as the vendor expected. The second shows the cyber security risk of unknown, unpatched vulnerabilities being exploited in the wild.
Make sure your cyber security plan can cope with both of these situations and is not simply “patching as and when”.
Clive Catton MSc (Cyber Security) – by-line and other articles