The National Cyber Security Centre (NCSC) has issued guidance on vulnerability management, emphasising the importance of updating software by default. The guidance recommends that organisations have a policy in place to apply software updates as soon as possible, ideally automatically. The NCSC advises organisations to test updates on their own systems and consider phased rollouts. It also suggests that internet-facing services and software should be updated within five days, while operating system and application updates should be completed within a week. The NCSC stresses the need for asset discovery and management, configuration audits, regular vulnerability assessments, and scanning as part of a company’s security practices. While the agency encourages organisations to update by default, it acknowledges that there may be situations where updates are not feasible or necessary, such as when a system is about to be decommissioned or compatibility issues arise. Ultimately, the NCSC emphasises that the business should own the risk and decision-making process surrounding software updates, rather than relying solely on the security team.
NCSC’s guide: Update is key – don’t get caught off guard
Latest from Blog
Mayor Ginther reveals cyber attack potential cost in millions for Columbus
TLDR: Columbus Mayor Ginther speaks on cyber attack that occurred in July, stating it could cost the city ‘millions’ of dollars. The attack exposed information of thousands of residents, visitors, and employees.
Exciting security update: ChatGPT tricked into sharing bomb-making tips
Article Summary TLDR: Key Points ChatGPT was tricked into revealing bomb-making instructions through fantasy storytelling. New evidence suggests Saudi officials may have helped 9/11 hijackers. Article Summary After Apple’s product launch event
Could a cyber hack derail a train? Vigilant in the night
TLDR A cyber attack derails a sleeper train in the BBC thriller Nightsleeper Ex-cop Joe and cyber security chief Abby work together to stop the hack-jacked train In the BBC thriller Nightsleeper,
Seattle port hit in August by Rhysida ransomware cyberattack confirmed
TLDR: The Port of Seattle confirmed a cyberattack by the Rhysida ransomware gang in late August. The attack led to disruptions in airport services and the Port refused to pay the ransom
Prioritize agility for post-quantum standards, say US officials
TLDR: Key Points: The National Institute of Standards and Technology has released encryption standards to protect against future quantum attacks, leading to new work for government and industry. Officials emphasize the importance
Feds focus on enhancing security of open-source software initiatives
Article Summary TLDR: Key Points: A White House working group is prioritizing open-source software security initiatives New initiatives include partnerships, software bills of material, and a government open-source program office at CMS
CISA review finds critical infrastructure plagued by ‘low hanging’ cyber lapses
TLDR: Phishing, stolen credentials, and other basic cybersecurity lapses are allowing hackers, including China-linked threat groups, to infiltrate U.S. critical infrastructure networks. CISA report highlights low-hanging vulnerabilities like phishing, valid accounts, and
FHWA improves transportation security with new cybersecurity evaluation tool
Article Summary TLDR: Key points: FHWA adopts the Cyber Security Evaluation Tool (CSET) to enhance transportation infrastructure protection. The CSET is a voluntary tool designed to help transportation authorities identify, detect, protect
Guardians securing digital front for remote troops with precision
TLDR: The 3rd Infantry Division conducted the Army’s first long-range, fully remote cybersecurity operation at the division level while the 1st Armored Brigade Combat Team was at Fort Irwin, California. The remote
Microsoft’s Licensing: A Security Threat to the Nation
TLDR: Microsoft’s licensing practices pose a threat to national security, as they have a cozy relationship with China. Government agencies are locked into using Microsoft products, making them vulnerable to security breaches.