Author Topic: Microsoft February Security Updates Postponed  (Read 1538 times)

0 Members and 1 Guest are viewing this topic.

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 18159
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Microsoft February Security Updates Postponed
« on: February 14, 2017, 03:38:43 PM »
From February 2017 security update release – MSRC:

Quote
Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems. This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.

After considering all options, we made the decision to delay this month’s updates. We apologize for any inconvenience caused by this change to the existing plan.

MSRC


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline pastywhitegurl

  • Hero Member
  • *****
  • Posts: 875
  • advanced techno feeb
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #1 on: February 15, 2017, 11:22:52 PM »
I was wondering why I didn't get an update notice.    Thanks for the heads up. :)

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 18159
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: Microsoft February Security Updates Postponed
« Reply #2 on: February 16, 2017, 12:24:50 AM »
The MSRC blog post was updated:

Quote
UPDATE: 2/15/17: We will deliver updates as part of the planned March Update Tuesday, March 14, 2017.

According to Mary Jo Foley:

Quote
My sources told me yesterday that Microsoft was having problems with its patch build system, and that those problems resulted in the company's failure to deliver its regular Patch Tuesday patches.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline plodr

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 815
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #3 on: February 16, 2017, 02:23:28 PM »
MS has had problems with its patch build system for a long, long time.

Just venture into any forum and the posts relating to update problems, the version of Windows hardly matters,  are always the most populated.

Online MikeW

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 520
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #4 on: February 16, 2017, 03:47:03 PM »
Quote
My sources told me yesterday that Microsoft was having problems with its patch build system, and that those problems resulted in the company's failure to deliver its regular Patch Tuesday patches.

 :) Have they only just realised that  :P




Edited by winchester73 to fix tags
Win 7 Home Premium  IE11 MSE  Mbam Pro

Offline Pete!

  • Hero Member
  • *****
  • Posts: 4428
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #5 on: February 16, 2017, 08:13:26 PM »
This (sort of) belies the contention that the latest version of Windows is more secure.

You Win 7 "rebels" that resisted "assimilation" will have the opportunity to have a more secure IE Flash a month before those with Win 10 using IE or Edge.

Offline plodr

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 815
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #6 on: February 17, 2017, 03:55:34 PM »
I also saw a zero-day exploit discovered on Feb. 3rd that only applies to Win 8 and Win 10.
http://www.ghacks.net/2017/02/03/smb-zero-day-affecting-windows-8-10-and-server/

I said to my husband that a month or so ago, MS was telling everyone they need to move away from the insecure and vulnerable Windows 7 and get Windows 10.
https://www.extremetech.com/computing/242795-microsoft-warns-windows-7-dangerously-insecure-2017

Is Microsoft guilty of creating false news?   ;)

Offline Digerati

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 790
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #7 on: February 20, 2017, 07:56:00 PM »
This is a different problem than what is often seen reported in the forums so I don't think it fair to lump them all together. And frankly, the "false news" IMO is that Windows Update is so problematic. The big picture says other wise as many 100s of millions of users have experience no problems at all - including yours truly on any of my systems. At worst, I've had a couple that didn't install that were fixed with a simple reboot.


This time had nothing to do with an update breaking something. It was, as Mary Jo noted, with the build system - which I take as the bundling and packaging system used for distribution, not the actual updates.


I have seen some posts about concerns that Windows will suddenly become insecure. I am not worried about it. Even in the case some zero-day exploit is discovered, that does not, in any way, mean your computer is suddenly insecure and totally exposed to compromise and infection. The badguy would still have to get by firewalls, routers, passwords and passphrases, and your security software before even thinking of executing any code on your computer.


Quote
I also saw a zero-day exploit discovered on Feb. 3rd that only applies to Win 8 and Win 10.
Yes, but as noted in that article, WANs are not widely used in home environments so it is not likely to affect very many, if any normal home users.


I do wonder about Flash updates since a bunch were recently announced. Since it is not uncommon for Microsoft to release out-of-cycle updates if the severity warrants it, I feel confident they will not allow over a billion Windows systems to suddenly become totally exposed.


Plus I note Windows Defender updates (which come via Windows Update) are still coming in at least once a day.
Bill (AFE7Ret)
Freedom is NOT Free!
2007 - 2018

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 18159
  • "Stronger than the past, united in our goal."
    • View Profile
    • Security Garden
Re: Microsoft February Security Updates Postponed
« Reply #8 on: February 20, 2017, 10:42:21 PM »
Rumor has it that Flash updates will be rolled out tomorrow -- at least as far as info SMB folks have heard.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline winchester73

  • Half a bubble off plumb
  • Administrator
  • Hero Member
  • *****
  • Posts: 6959
  • Liverpool FC - YNWA
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #9 on: February 20, 2017, 11:21:11 PM »
Anyone else think Microsoft is the best entity to determine when to release updates for their own product?
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member

Online MikeW

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 520
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #10 on: February 21, 2017, 07:08:05 AM »
Microsoft lost my trust completely at the release of win 10
Win 7 Home Premium  IE11 MSE  Mbam Pro

Offline Digerati

  • LzD Friends
  • Hero Member
  • *****
  • Posts: 790
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #11 on: February 21, 2017, 01:44:12 PM »
Quote
Microsoft lost my trust completely at the release of win 10
Just the opposite for me.

I may not like how Microsoft executive management and marketing departments push their policies on consumers, but I don't let that cloud my judgement on the developers. W10 is by far the finest, most stable, most secure Windows (if not OS) ever developed. It is by far the most compatible with current hardware technologies and the most capable at supporting future technologies.

As a shop owner, the biggest segment of my business was, for years, malware removal or repair of collateral damage after malware removal. That segment has dropped to a tiny percentage of my business and to near zero with W10 systems. And for the record, with the W10 systems, in every case it is due to users' lack of discipline (being click-happy) and users dinking with and disabling defaults because they treated W10 like they did XP. :(

I have many friends, former co-workers, and fellow forum helpers who have their own shops who have reported similar drops in business since W10 came out.

Microsoft has every incentive in the world to make sure our systems are secure. Why? Because they will get blamed and bashed if not, even when the failure is due to (1) user neglect, (2) failure of the 3rd party security applications to protect us, and (3) action of the badguy.

Quote
Anyone else think Microsoft is the best entity to determine when to release updates for their own product?
Of course they are. While I understand administrators want and need to know when updates are coming, they sure should not be dictating to Microsoft when they will come - not when they already have control over when they will be applied. For home user and SOHO scenarios, it is not important for the vast majority.

I say the Windows 10 development department has done and is doing a fantastic job with W10, in spite of some pretty lousy business policies and horrendous marketing practices. Don't hold the right hand hostage because the left hand is clueless.

Bill (AFE7Ret)
Freedom is NOT Free!
2007 - 2018

Offline Zootopia3000

  • Full Member
  • ***
  • Posts: 53
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #12 on: February 21, 2017, 02:40:37 PM »
I LOVE Windows 10. Fantastic OS for a home theater system. Runs just fine on an old SFF PC with 2.8GHz Duo Core processor, 4GB memory and added Nvidia NVS 310 graphics card. For main PC it would be just too much a hassle to update to Win10 from Win7, and the hardware is just a bit slower than aforementioned PC.

I did however disable Windows Defender, just don't need it for the home theater PC, being nothing important on the PC to worry about, thus making the overall system speedy. I just full scan with Malwarebytes every Patch Tuesday now, and also run WinPatrol realtime, along with disabling NetBIOS over TCP/IP, disabling Client for MS networks as well as File & Printer sharing for MS networks, and also disable DCOM partially. Spywareblaster as well as Spybot's HOSTS file malicious site blocking entries used as well. I do all the same for my Win7 PC as well, but also use Windows Worms Door Cleaner for Win7. The Tweaking.com Windows Firewall addon for Win10 firewall is a nice option too. Use Comodo Firewall for Win7, as well as realtime Malwarebytes. Analog X's Script Defender is also a nice option for Windows 7.

Offline winchester73

  • Half a bubble off plumb
  • Administrator
  • Hero Member
  • *****
  • Posts: 6959
  • Liverpool FC - YNWA
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #13 on: February 21, 2017, 04:20:36 PM »
Quote
Surprise! Microsoft issues Flash patches for Internet Explorer, Edge

After announcing last week that February's patches would be delayed until March, Microsoft alerts large customers that security patches are due today

http://www.infoworld.com/article/3172391/microsoft-windows/surprise-microsoft-issues-flash-patches-for-internet-explorer-edge.html

Quote
Microsoft is planning to release security updates for Adobe Flash Player. These updates will be offered to the following operating systems: Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows Server 2016...

No other security updates are scheduled for release until the next scheduled monthly update release on March 14, 2017.
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member

Offline Zootopia3000

  • Full Member
  • ***
  • Posts: 53
    • View Profile
Re: Microsoft February Security Updates Postponed
« Reply #14 on: February 21, 2017, 08:18:33 PM »
Win10 Flash update available as of NOW.