croom new

Eclipse Integrated Systems Blog

Eclipse Integrated Systems has been serving the Bridgewater area since 1994, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

You Need To Be Familiar With Patching Terminology

You Need To Be Familiar With Patching Terminology

Over the past several months, while watching the news or reading about business and technology, you’ve probably encountered a few words, such as ‘ransomware’ ‘exploit weakness’, and ‘security patch’. These terms are used often, and you may be confused as to what they really mean, and how they relate to you and the security of your business’ data.

In recent months, ransomware attacks like WannaCry and other malware have made headlines, with cyber criminals exploiting weaknesses in networks, application deployments, and operating systems. What is very hard for some people to understand is that often the weaknesses being exploited are known by software developers, who have released security updates known as ‘patches.’

For many small business owners and personal PC users, a better understanding of types of patches, how they work, when they’re released, and how to access them might be all that stands between a hacker and your network. Here are five terms that are associated with the continuous software updates that aim to protect users from data loss or worse.

Patch Tuesday - For those who allow their computer to update and install patches automatically, it might have never really occurred to them that there was a schedule as to when Microsoft released patches. Similar to how new movies are released or video games are launched on specific days of the week, Microsoft releases patches on the second (and sometimes fourth) Tuesday of each month. With newer operating systems and software versions, there might come a time where Patch Tuesday becomes obsolete in favor of a real-time data exchange where software and applications are constantly updated as needed.

Security Patching - This is what most people think of when they think of a patch for a piece of software or an application. It’s a series of data and files that fix or mitigate the threat of a known issue or vulnerability. These are generally what are provided on official patch days, like Patch Tuesday. That is, of course, unless the patch is a zero-day or immediate release, an action usually reserved for major security risks or weaknesses found after they have been exploited.

Hotfix - Sometimes referred to as a ‘Quick-fix Update’ ‘Quick-fix Engineering Update’ or ‘General Distribution Release’, a hotfix is a small patch that fixes a single bug or vulnerability that is significant enough that it should not wait until the next scheduled patch release. Although, Microsoft itself no longer uses the term ‘hotfix’ in an official capacity, the term is still widely used by majority of the industry.

Zero Day Vulnerability - This is a specific type of weakness that is not discovered or disclosed until the hackers are already exploiting it. This is called ‘zero day’ because software developers and advocates have no time - or zero days - to create a patch or develop a work around, leaving both users and developers scrambling to keep data safe.

Whitelisting - As related to malware and ransomware, whitelisting is the process in which a patch or application is declared safe, allowed access to the network, or otherwise approved for a certain network or program. The term ‘whitelist’ comes from the opposite of ‘blacklist’. Made popular during the Cold War, blacklist refers to a list of people or items that are banned, rejected, or labeled in a negative way. Whitelisting was tossed around when so many WannaCry victims had the security patch needed since March. Many establishments were waiting for internal IT departments to test and officially ‘whitelist’ the patch which would allow the installation of the security patch needed to eliminate the vulnerability exploited by the WannaCry ransomware.

Truthfully, there is a lot more to patches than just the five terms above - and the more your business relies on technology the more important proper maintenance of technology - including patches and updates, becomes to your continued success. In the end, working with Eclipse Integrated Systems will help you make sure that your business is always properly updated, with pertinent, whitelisted patches. Call us at 800-340-0505 to learn more.

 

Comments

No comments made yet. Be the first to submit a comment

Mobile? Grab this Article!

Qr Code

Tag Cloud

Tip of the Week Security Technology Cloud Best Practices Privacy Hackers Software Business Computing Malware Internet Microsoft Windows 10 Computer Google Hosted Solutions Innovation Backup Productivity Business User Tips Business Management Windows Disaster Recovery Hardware Productivity Network Security Cybersecurity Virtualization Efficiency Law Enforcement Apps Email Managed IT Services Mobile Devices IT Support Smartphone VoIP Ransomware Miscellaneous Mobility Android Operating System Cybercrime Microsoft Office Quick Tips Business Continuity communications Chrome Telephone Systems Passwords Office 365 Saving Money Wireless Application Communication IT Services Password Small Business Unsupported Software Workplace Tips Social Health Browser Information Technology Money Cloud Computing Upgrade Facebook Holiday Shortcut Google Drive Current Events Smartphones Server BDR Computers Managed Service Provider Hacking Risk Management Work/Life Balance Save Money Gadgets Office tips USB Wi-Fi Outsourced IT App Government Social Media Mobile Device Management The Internet of Things Hosted Solution Data Backup DDoS Mobile Computing End of Support Windows 10 History Battery Data Management HaaS Private Cloud Samsung Personal Information Automobile Cost Management Automation Recovery Going Green Managed IT Phishing Transportation Update Identity Theft Collaboration Computer Care WiFi Proactive IT Best Practice Internet Exlporer Streaming Media Data Recovery Bandwidth Office Humor Television Data Storage Remote Computing Telephony Users Cleaning Spam Employer-Employee Relationship Search Antivirus Meetings Save Time Alert Flexibility Hard Disk Drive Router Hacker Managed IT Services Scalability Unified Threat Management Politics Trending Data Security Keyboard Data storage Lithium-ion battery Adobe Distributed Denial of Service Settings Bluetooth How To Vendor Management Upgrades Experience Administrator HBO Vulnerability Marketing Point of Sale Applications Sports Network Fax Server Consultant Advertising Phone System Access Data Protection iOS Hiring/Firing Data Licensing IT Support Training Touchscreen Music Gmail IT Management Wearable Technology Audit Benefits Reputation Travel Files Black Market Company Culture Apple Analytics IT Solutions Tech Support Computer Fan Smart Technology Laptop Tablets Wireless Technology eWaste Commerce Encryption Emails PDF Big Data Robot Running Cable Nanotechnology Touchpad Worker Commute NFL SharePoint Instant Messaging WIndows Server 2008 Webinar Text Messaging Books VPN Social Engineering User Error Root Cause Analysis Managing Stress iPhone Word Patch Management IT solutions Electronic Medical Records Operating Sysytem Outlook Augmented Reality Video Games Scam Mobile Device Windows Ink Budget Screen Mirroring Teamwork Windows 10s Artificial Intelligence Avoiding Downtime Excel Uninterrupted Power Supply Legal Employer Employee Relationship Virtual Reality Chromecast Cast Solid State Drive Sync Internet of Things OneNote Computer Accessories Education SaaS Entertainment BYOD

Blog Archive

Sign up for our Newsletter!

  • Company Name *
  • First Name *
  • Last Name *

      Latest News

      Eclipse Integrated Systems launches new website!

      Eclipse Integrated Systems is proud to announce the launch of our new website at www.eisystems.com. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our services for prospective clients.

      Read more ...

      Account login