Editor’s note: Wired for Safety is a weekly column on cybersecurity and other tech issues. Duane Dunston is an assistant professor of cybersecurity and networking at Champlain College. He received his bachelor’s and master’s of science from Pfeiffer College. From 2001 to 2011 he worked in cybersecurity for NOAA. He is a first-year doctoral student at Northeastern University. His other activities include “You Have A Voice,” a project to develop an electronic screening assessment to identify human trafficking victims.
[M]aking sure the software on your computer system is up to date is one of the most important tasks you can perform to help keep it safe from viruses, worms, spyware and other malicious software, aka malware.
Keeping software up to date, or “patched,” means you are downloading and installing the newest version. Software security vulnerabilities may be found that can allow someone to install malware on your computer. The patches fix those known vulnerabilities to help minimize the chances of someone taking advantage of them.
For the Mac, Apple has instructions here.
Current versions of each operating system (Microsoft Windows and Mac) have an option to alert you when there is a patch available. You should apply those patches when prompted.
It is important to know that when you patch software using the Microsoft or Mac update utility, it doesn’t patch the third-party software on your computer. Third-party software includes Java, Adobe Reader, Adobe Flash Player, etc.
The most common method by which viruses and worms infect a computer is through unpatched versions of third-party software.
Some people use third-party software such as Chrome or Firefox to surf the web. The Chrome browser patches itself automatically when you restart it, and Firefox alerts you when a patch is available. Accordingly, some third-party software provides patches in the background without having to prompt you.
However, that is not the case for most of the third-party software that may be on your computer. There are programs you can download to help with keeping your third-party software patched. Secunia Personal Software Inspector is for Windows. It is free for home use and has a commercial version as well. It has an easy-to-use interface and the option to automatically apply patches.
MacUpdate, with similar capabilities, is available for Mac OS.
Why is a program like PSI necessary, though? When you purchase a new computer, it often comes installed with a lot of extra software so everything you need for your day-to-day tasks is conveniently available. This comes at the price of you having to manage the patches for the software — that is, taking the steps necessary to see if there is a new version. Many people don’t know how to do that, so the software may not be patched for long periods or at all. That could leave your computer vulnerable to malware.
One of the most dangerous forms of malware these days is ransomware. It searches your computer for files such as Word documents, spreadsheets and photos and then modifies them so a password is required to open them. Unfortunately, you may have to pay to gain access to your files or wait for an antivirus vendor to find a way for you to get access again.
To help stay updated on new software patches, sign up for support email lists on the websites of third-party software you install or that comes with the computer you purchase.
Better yet, if you install new software on your computer, be sure to install software that provides regular updates.
