One thing that I am continually surprised to hear are arguments that patching just Microsoft’s products is good enough.  In my seven years at Shavlik that is typically the hurdle we face when we deal with prospects that use Microsoft’s solutions for patch management (WSUS, SMS, SCCM, etc.).  Today, instead of telling you 3rd party products are a concern, why don’t we show you.  On top of that, let’s do it for free with our new Shavlik Security Advisor Scan tool.

Shavlik Security Advisor is a new offering from Shavlik using our industry leading Patch Assessment engine to agentlessly assess your environment.  This also utilizes our SaaS architecture to deliver the components needed within minutes so you can click and scan (really, when I say minutes I mean minutes on the first time out).  Also, this is entirely ANONYMOUS*.  You will get to the Security Advisor report without giving us your personal information.

* Disclaimer: If you want to download the scan report you will be required to submit your email address.

I hear the arguments quite often from IT admins who believe that patching Microsoft products is good enough.  Objections include “I know exactly what is installed in my environment. Nobody can run those apps” and “I only worry about the servers and those don’t have 3rd party apps.” Well, I challenge that in the majority of cases.  I have visited many customer sites and find that most have Adobe Java, Citrix, and several other non-Microsoft applications on the server side.  And the presence of 3^rd party applications on their workstations it is even more prevalent.

Even in the tightest organizations that lock down user’s admin rights to keep unapproved software off of workstations, exceptions are often made.  For example, the Marketing team may need RealPlayer and QuickTime, or certain executives are allowed to download iTunes for their iPhone and iPod.  How many products do your users download  that have their documentation in PDF format and package a Adobe Reader with their install so it can be viewed  conveniently?  How about the simple fact that the server admin should be worried about the machines that can get access to those servers?  If such a workstation is compromised then anything it can see is at risk.  That machine has already helped the attack to bypass many of your security measures by getting compromised due to not being fully patched and protected.

Don’t just think you are immune to the 3rd party product risks.   Verify that you are.

Get your free Shavlik Security Advisor Scan today.

Note: Shavlik NetChk Protect users are encouraged to try this out as well.  Just be aware that the scan we are doing in Security Advisor is the equivalent of the WUScan template in NetChk Protect.  If you are using the Security Patch Scan template you may catch some non-security patches you are not updating regularly if it is not part of your patch mandate.

Chris Goettl
Product Owner
Shavlik Technologies