Study: Staying Current on Security Patches Like Drinking from a Firehose

Feel overworked keeping up with security patches? You should, according to an analysis by a managed security services firm.

Activis released its own research finding that an administrator for even a medium-sized company with a nine-server, eight-firewall infrastructure would have had to make 1,315 updates so far this year to stay current with vendor patches. Activis used Microsoft servers along with other vendors' software in its analysis.

The United Kingdom-based subsidiary of a German firm notes that the number translates to five updates per working day, and Activis further estimates that the same administrator would have to manage half a million log file entries per day.

According to Activis, 99 percent of all attacks arise from known vulnerabilities and misconfigurations.

"In an ideal world, we recommend that network managers install every patch," John Cheney, managing director for Activis, said in a statement. "However, with many organizations using hundreds of servers, it is unrealistic to expect them to update every server with every new patch. Nevertheless, this is key to ensuring that public-facing systems such as Internet sites and Web portals, etc. are secure."

For Activis, the numbers serve as a pitch for its security outsourcing services.

For the rest of IT, the numbers provide a validation for frustration.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.


  • Sign

    2018 Microsoft Predictions Revisited

    From guessing the fate of Windows 10 S to predicting Microsoft's next big move with Linux, Brien's predictions from a year ago were on the mark more than they weren't.

  • Microsoft Recaps Delivery Optimization Bandwidth Controls for Organizations

    Microsoft expects organizations using its Delivery Optimization peer-to-peer update scheme will optimally see 60 percent to 70 percent improvements in terms of network bandwidth use.

  • Getting a Handle on Hyper-V Virtual NICs

    Hyper-V usually makes it easy to configure virtual network adapters within VMs. That is, until you need to create a VM containing multiple virtual NICs.

  • Microsoft Highlights Emerging Kubernetes Scalability and Governance Efforts

    Microsoft this week highlighted some emerging efforts to improve both the scalability and governance of the open source Kubernetes container orchestration service.

comments powered by Disqus
Most   Popular

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.