Overview
Yesterday was Microsoft's final 'Patch Tuesday' of the year and, as expected, a number of security fixes have been released for the Windows Operating System and other Microsoft products. Apple also released a batch of security updates for their devices earlier this week.
Individuals and businesses should apply these security updates to protect against potential cyber threats.
If you receive a notification on your computer to install updates, please do so as soon as practicable. If a notification isn't displayed, you can manually check for updates by searching for 'updates' on your computer or device's search bar.
Detail
This month’s Microsoft ‘Patch Tuesday’ addresses a multitude of security vulnerabilities, many of which have been classified as ‘important’ and some as ‘critical’. Notably, remote code execution vulnerabilities for the Microsoft Office App, Print Spooler and 4K Wireless Display Adapter have been patched.
More information about the December 2021 Microsoft Security updates can be found here: https://msrc.microsoft.com/update-guide/releaseNote/2021-Dec
and here: https://msrc.microsoft.com/update-guide/en-us
Apple has also recently released security updates for all the main Operating Systems (iOS, macOS, watchOS, iPadOS).
More information about the latest Apple Security updates can be found here: https://support.apple.com/en-us/HT201222
Recommended Action
- Frequently monitor and review security updates for all of your systems and devices. Implement security patches as soon as practicable. Set your devices to update automatically wherever possible.
-
If using a Microsoft computer, it should display a notification to update but if it doesn't you can 'check for updates' in the search bar next to the start button. Your organisation may implement security updates automatically but you may be asked to restart your computer in order to complete the update(s).
-
It is good practise to back up your system and/or important files before installing any major updates.
- Take a look at the ‘5 Steps to Cyber Security’ guidance on our Advice & Guidance page for more guidance on how to better protect your organisation.
If you have any concerns, or have been affected by a cyber-related issue, report it to us by submitting a Cyber Concerns Online Reporting Form.