Glossary
Patch Management
Patch management is keeping all your software up to date. When software companies find security holes, they release patches to fix them. If you don't install these updates, you're leaving known doors open for hackers. It's like your lock company telling you about a flaw in your deadbolt and offering a free fix - you'd be foolish not to take it.
What is Patch Management?
Patch management is the process of acquiring, testing, and installing software updates (patches) that fix security vulnerabilities, bugs, or add features. Regular patching is one of the most effective security measures, as most attacks exploit known vulnerabilities that have available patches.
Why Should You Care?
The vast majority of cyberattacks exploit vulnerabilities that have had patches available for weeks, months, or even years. WannaCry ransomware spread globally by exploiting a Windows bug that Microsoft had patched TWO MONTHS earlier. Many victims could have avoided infection simply by applying updates.
Is your business exposed?
Real-World Example
A manufacturing company skipped Windows updates because they worried about disrupting production. When a vulnerability was exploited, ransomware spread across their network in minutes. The production line was down for 3 weeks. The Microsoft patch that would have prevented the attack had been available for 6 months.
How to Protect Against Patch Management
- 1.
Enable automatic updates on all Windows computers
- 2.
Schedule regular maintenance windows for updates
- 3.
Keep browsers and browser plugins updated
- 4.
Prioritize patches for internet-facing systems (VPN, email, web servers)
- 5.
Inventory all software so you know what needs patching
- 6.
Subscribe to security bulletins from your key vendors
Related Terms
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required