Pen Testers Red team

Ask A Pen Tester: What happens if I miss a system or security update?

Failing to regularly update your system software can leave you vulnerable to any number of security threats. Many tech administrators fail to update cloud-based systems because traditional systems never needed these sorts of security patches. It’s an understandable oversight, but one that can cause significant damage to your company over time.

Here are four rules of thumb for software updates: 

  1. Make sure your software is always up to date! There are certain steps you can take to make sure systems are updated as soon as new versions become available. Simply assign regular system audits as a task to one of your tech admins, or include a discussion of system updates as an agenda item for your company’s quarterly reviews. However you choose, make sure you follow through every time. As with many security efforts in modern business, the key to success is consistency.
  2. Stick to trusted sources. As tempting as it is to try to cut corners or reduce costs with pirated or unlicensed versions, you'll be unnecessarily leaving yourself open to malware and other threats. Save yourself the headache and get your updates from the company that created the software in the first place.
  3. Remember that automation is your friend. Those legitimate sources we just talked about will often offer an option to update your software automatically. Think of it as one less thing your security team has to track. When automation isn't a possibility, set an internal reminder to update your software on a quarterly basis.
  4. Keep an eye out for imposters. We've all seen those pop-ups urging us to click on a update link right now. Those should always be viewed skeptically and never clicked on without checking with your security team. They often contain malware and other windows that bad actors can use to get into your systems.

Keeping up with system and security updates is an easy, no-brainer way to stay on top of your organization's cyber hygiene. Feel free to reach out to the experts at MindPoint Group if you have questions! 

More from Our Cybersecurity Experts