Operating System Security and Patching

Importance of Keeping OS Patched

• Operating systems are fundamental computing platforms used universally.
• Attractiveness to attackers due to widespread use.
• Patching closes known vulnerabilities.

Complexity and Vulnerabilities

• Operating systems like Windows 11 have millions of lines of code.
• More code means more potential vulnerabilities.
• Vulnerabilities are initially unknown but are discovered over time.

Patch Tuesday

• Occurs every second Tuesday of each month.
• Example: May 9th, 2023, released 50 security patches, including:
  • 8 elevation of privilege vulnerabilities.
  • 4 security feature bypass vulnerabilities.
  • 12 remote code execution vulnerabilities.
• The previous month had about 100 vulnerabilities fixed.

Best Practices for OS Updates

• Regular Updates: Plan to update monthly or during on-demand updates.
• Timely Patching: Patch quickly to prevent attackers from exploiting vulnerabilities.
• Testing in Large Environments: Test patches in non-production environments to avoid potential issues.
• Backup Before Patching: Always have a backup to revert if issues occur.
• Automatic and Manual Updates:
  • Some patches are automatic.
  • Core system patches may require a reboot.

Handling Post-Patch Issues

• Even with testing, issues may arise post-patch.
• Crucial to maintain a backup to roll back to a pre-patch state if necessary.

Additional Resources

• Microsoft Security Response Center: msrc.microsoft.com

These notes summarize key points regarding the maintenance and security of operating systems through regular patching and updates.