profile image
Dan Imbach
Posts by Dan Imbach
article-img
Automation | September 13, 2019
The Continuous Wave of Critical Windows Patches Emphasizes the Need for Speed and Automation
Overview The recent wave of critical Windows vulnerabilities emphasizes the need for fast and effective patching. Most attackers exploit known vulnerabilities and implementing patch best practices is key to protecting your endpoints and your organization from cyberattacks. On August 13th, 2019, Microsoft released a couple of patches for Remote Desktop Services to address two critical vulnerabilities: CVE-2019-1181 and CVE-2019-1182. According to the National Vulnerability Database, these CVEs carry an impact severity of 9.8 (using the CVSS v3.0 Severity calculator). In other words, these patches are critically important since malware could exploit these vulnerabilities and propagate between vulnerable computers without user interaction.  These patches should be applied to Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10.  At the same time, Microsoft delivered another patch, CVE-2019-1162, for Windows 10 after Google's Project Zero identified a vulnerability which has existed within Windows for 20 years, beginning with Windows XP.  According to Microsoft, an attacker who successfully exploits this vulnerability could run arbitrary code in the security context of the local system; then install programs; view, change, or delete data; or create new accounts with full user rights. System Administrators are urged to expedite testing and deployment of these Windows patches. Microsoft accumulates security patches over a month and dispatches them all on the second Tuesday of each month. Every time they do, administrators must evaluate, test and install those patches across their Windows environment. Speed is very important since endpoints are most vulnerable to attack. Patch with Speed and Accuracy Patch automation can significantly reduce the patch time while increasing first pass success rates. Here are a couple of ideas:  First, consider using BigFix Autopatch. This feature gives you the ability to create rules for distributing patches to your organization in an automated...
article-img
Automation | September 13, 2019
Are you ready for Windows 7 End of Support?
Overview Here we are again, another Microsoft operating system being put out to pasture. While Windows 7 is being retired, memories of WannaCry will always remain.  Microsoft has remained true to their commitment of ten years of product support for Windows 7 from when it was released on October 22, 2009.  After January 14, 2020, Windows 7 endpoints will no longer receive security updates.  It is important that you address this impact to your organization with your main option being to upgrade to the more modern Windows 10 operating system. Here are your options: Customers with Enterprise Agreements (EA) or Enterprise Subscription Agreements (EAS) with active subscriptions to Windows 10 E5, Microsoft 365 E5 and Microsoft 365 E5 Security via a special promotion running from June 1,,2019, to December 31,, 2019, can opt for Windows 7 Extended Security Updates (ESU) for a year at no charge. Restrictions apply. Microsoft offers Extended Security Updates (ESU) for Windows 7 for three years post EOS (fee-based). Upgrade Windows 7 to Windows 10 or bare metal deploy Windows 10. Have you considered BigFix for this upgrade?   Extending Service for Windows 7 Perhaps you have specific needs to retain Windows 7 for a while longer or perhaps you do not have the resources to migrate all your Windows 7 endpoints to Windows 10 by mid-January. In that case, Microsoft will gladly provide you Extended Security Updates for Windows 7. Here are the costs you should anticipate: Year one: $25 per device for Windows 7 Enterprise, $50 for Windows 7 Professional Year two: $50 per device for Windows 7 Enterprise, $100 for Windows 7 Professional Year three: $100 per device for Windows 7 Enterprise, $200 for Windows 7 Professional By using BigFix, you can accelerating the migration to Windows 10 to meet the January 14, 2020, deadline. By not paying for ESU for Windows 7,...
a/icon/common/search Created with Sketch.