Microsoft Overhauls Patch Tuesday Security Update Guide
Microsoft announced a new Security Guide to help cybersecurity professionals more quickly untangle relevant bugs in its monthly security bulletins.
Microsoft has updated its Security Update Guide, which is used by tens of millions of cybersecurity professionals the second Tuesday of every month, also known as Patch Tuesday. The update, according to Microsoft, is meant to deliver a more intuitive user experience.
For its latest update, introduced three weeks ahead of its Oct. 13 Patch Tuesday, Microsoft is boasting an improved user experience and a more modern user interfaces, better filtering and customization options for data views, and improved support for multiple languages.
The update is “to help protect our customers regardless of what Microsoft products or services they use in their environment,” according to a Microsoft Security Response Center blog post on Tuesday.
My team launched a thing today, proud of them! Our new and improved Security Update Guide is a major step forward for MSRC UX and dramatic improvement for our customers to more easily consume Microsoft security patch information. Check it out => https://t.co/bmfQ5KHQAg https://t.co/C2mrHwx9xu
— Matthew Dressman (@mdressman) September 22, 2020
Microsoft has tinkered over the years with the way it delivers security updates to is vast product catalog. For instance, in 2017, Microsoft debuted a new system that introduced API support that would help customers automate some aspects of patching. The efforts have been met with a mix of cheers and jeers.
Other improvements listed by Microsoft in this latest update include:
- A column-selector with export support to generate and download custom reports.
- Multiple tables with scenario-focused data views
- “Vulnerabilities” table, listing all CVE details.
- “Downloads” table, listing package-related information for security updates.
- “All” table, presenting the most data and customization options.
So far, some security professionals have been critical of the way the new Security Update Guide handles exporting data to spreadsheets.
The CVE also loses html – see the diff? pic.twitter.com/XBYL0R6Nvs
— SBSDiva (@SBSDiva) September 22, 2020
But others on Twitter see it as a big improvement.
Huge improvement – good job!
— Duncan McCormack (@DuncanMcCNZ) September 22, 2020
“We’ve listened to your feedback and incorporated many of your suggestions,” Microsoft wrote.
The post “Microsoft Overhauls Patch Tuesday Security Update Guide” appeared first on Threat Post
Source:Threat Post – Tom Spring