Diamond IT Blog

New 'Zerologon' threat and the importance of patching

Written by Hannah Donnelly | September 24, 2020

Last month, Microsoft patched one of the most dangerous bugs ever reported, with an alarming 10/10 CVSSv3 severity score. 

According to Dutch security firm Secura the bug, named 'Zerologon', 'takes advantage of weak cryptographic algorithm used in the Netlogon authentication process'. Put simply, Secura says the vulnerability would "allow the attacker a foothold on your internal network to essentially become Domain Admin with one click".

Due to the severity of this threat, Diamond IT urges all business leaders to ensure that the August 2020 Microsoft patch is installed on their domain controllers as a matter of priority. 

For business leader's who are not currently working with their IT teams or a Managed IT provider to ensure that their software is regularly patched in order to stay secure and up-to-date, here is what you need to know about patching.

 

What is patch management?

Patch management (or 'patching') is a term used which describes the process of distributing updates to software, which corrects vulnerabilities and improves user experience, performance and security. Patches are written by software vendors to repair bugs and improve stability. 

In conjunction with a strong cybersecurity strategy, patching is a crucial tool to keep your systems secure. Without updates, your system will quickly become vulnerable to security threats.

Automating your patch management (or engaging a trusted third party to manage your IT function) will not only reduce the number of hours involved in manual updates, but ensure that all software, regardless of whether it is located in your office or remotely, remains updated and secure.

 

4 reasons why is Patch Management critical for your security?

  1. Strengthen Cybersecurity: Patch management ensures that any vulnerabilities within your software are fixed regularly in order to reduce the risk of cybersecurity threats to your organisation. For modern workforce's, patch management also ensures that no matter where your employees are working from, their devices are secure.
  2. Functionality improvements: While patch managements' core focus is improving cybersecurity, regular patching also provides functionality updates to your software and applications. This ensures your employees are always using the latest version of software, and using the full suite of features available. 
  3. Reduce IT down time: Patch management not only reduces the down time of your systems by ensuring they remain up to date and operating smoothly, but also frees up precious time for your staff, allowing them to focus on core business operations.
  4. Maintain Compliance: Many industries are now required by legislation to maintain a certain level of cybersecurity compliance and protection of business and customer data. Patch management is a critical security component for organisations to meet compliance requirements.

 

Introducing Diamond IT's Patch Management

Diamond IT’s automated patch management software regularly applies the latest patches in a structured way which allows us to block any patches that have been found to cause issues.

This is all done without our technicians needing to touch your systems, reducing any chance of human error. When a new layer of protection or stability enhancement becomes available, your system will be updated. Diamond IT’s systems also allow us to implement one-off fixes when necessary to major security threats.

If you need advice on how you can ensure your cybersecurity strategy is fit for purpose, or if you'd like more information on Diamond IT's patch management system, our team of cybersecurity experts are ready to help. 

Contact our team on 1300 307 907 today.