Update Software

From attackics
(Redirected from Update Software)
Jump to navigation Jump to search
Update Software
Mitigation
ID M0951
NIST SP 800-53 Rev. 4 SI-2
IEC 62443-4-2:2019 CR 3.10

Description

Perform regular software updates to mitigate exploitation risk. Software updates may need to be scheduled around operational down times.


Techniques Addressed by Mitigation

NameUse
Drive-by CompromiseEnsure all browsers and plugins are kept updated to help prevent the exploit phase of this technique. Use modern browsers with security features enabled.
Engineering Workstation CompromiseUpdate software on control network assets when possible. If feasible, use modern operating systems and software to reduce exposure to known vulnerabilities. 
Exploit Public-Facing ApplicationRegularly scan externally facing systems for vulnerabilities and establish procedures to rapidly patch systems when critical vulnerabilities are discovered through scanning and public disclosure.
Exploitation for EvasionUpdate software regularly by employing patch management for internal enterprise endpoints and servers.
Exploitation for Privilege EscalationUpdate software regularly by employing patch management for internal enterprise endpoints and servers.
Exploitation of Remote ServicesUpdate software regularly by employing patch management for internal enterprise endpoints and servers.
Supply Chain CompromiseA patch management process should be implemented to check unused dependencies, unmaintained and/or previously vulnerable dependencies, unnecessary features, components, files, and documentation.
System FirmwarePatch the BIOS and EFI as necessary.