Week 3 - Now Showing: Software Updates
According to the Homeland Security Systems Engineering and Development Institute's 2023 Common Weakness Enumeration (CWE) Top 25 Most Dangerous Software Weaknesses list, out-of-bounds writes, cross-site scripting and SQL injection are the top three software vulnerabilities. Developers and systems will send out software updates to combat these weaknesses when detected. If your software isn't updated, it is a free ticket for hackers.
Hackers can exploit vulnerabilities in unpatched software. When new software updates come out to the public, it allows everyone, especially hackers, to learn about and exploit those weaknesses. Public knowledge of those holes leaves you and your organization as easy prey.
Updating or patching your software means you are less vulnerable to security risks. Perform a weekly check for updates by typing "Windows Update" into the search bar, choosing the application, and selecting the link "Check online for updates from Microsoft Update." If an update is available on your device, update it promptly.
Leave office computers powered on in campus spaces. When working remotely, connect to the Virtual Private Network (VPN) once a week for a minimum of three hours to ensure you receive the most up-to-date patches.
In the case of the Red Cross breach, they did not install an update fast enough, giving hackers access to over 500,000 people's data. This is just one example of many malicious software attacks that happen every day.
To protect you, any TAMU-CC workstation that has not been updated will be disabled. You must then contact the IT Service Desk to set up a time to go through the updates and re-enable your workstation.
Students are encouraged to update personal devices on a regular basis. Better yet, enable your phone or any other smart device to auto-update. See instructions for updating your system: