ESG research on cyber risk management, which involved 340 cybersecurity professionals, revealed that 40 percent felt tracking patch and vulnerability management over time was their biggest challenge.

Security researchers at Google have claimed that a quarter of all zero-day software exploits could have been avoided if more effort had been made by vendors when creating patches for vulnerabilities in their software.

On Tuesday, January 26, 2021, Apple released iOS and iPadOS 14.4. As with previous releases, each new OS update is available to all Apple devices capable of running iOS and iPadOS 14. If you’re an IT admin, you should evaluate how you want to approach the latest release. Do you want to accelerate or slow down the updates? One concern we often hear about is that the apps that a company is deploying may not be compatible or may not have been tested with the latest release.

On Tuesday, January 26, 2021, Apple released version 14.4 of its iOS, iPadOS, and tvOS products that included patches for three security vulnerabilities that affect iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation, as well as Apple TV.

Unpatched security vulnerabilities are utilized in the majority of data breaches and ransomware attacks. In fact, research shows that many CVEs go unfixed for long periods to time leaving companies open to unnecessary exposure. 60% of breaches involved vulnerabilities of which a patch was available but not yet applied. This is why vulnerability management is so important and not only having a plan but selecting the right tools to support your plan.

Over the last few years, the idea of patching systems to correct flaws has graduated from an annoying business disruption to a top priority. With all of the notorious vulnerabilities that can wreak total havoc, the time it takes to patch becomes a minor inconvenience when weighed against both the technical challenges and possible regulatory penalties of not patching.

In today’s press release, we announced the extension of our partnership with Avast Business. Avast Business will be incorporating Ivanti Security Controls Advanced SDK for Ivanti OEM partners to offer patch management functionality through Avast Business CloudCare. This incorporation will automate and simplify the patch remediation process.

In today's press release, we announced the incorporation of Ivanti patch management technology into the XM Cyber BAS platform! XM Cyber is a multi-award-winning leader in breach and attack simulation (BAS) advanced cyber risk analytics and cloud security posture management.

Vulnerability remediation is still an ongoing struggle for organizations. A simple mistake could cause no issues, or it could set off a wide-scale, devastating, corporate breach. Why is this? There are many reasons. Security and Ops talk past one another. No one wants to be the one that broke something. Speed is hindered by ineffective testing.

Our sales team receives handfuls of patching questions so often, we almost brought in the bots to answer. But because the questions below require more explanation, I grabbed a few minutes with Ivanti’s patch management resident expert, Chris Goettl, for answers to questions concerning patching in the cloud, standalone patching, validating patches, and patching remote endpoints.