Why skipping the security updates is foolish

Let’s begin with some background on the importance of security updates. The Finnish Communications Regulatory Authority’s Cyber Security Center keeps a list of data security threats, and neglecting your application updates has been the number one threat for years in a row. It is usually the security updates for 3rd party applications (such as Adobe Flash, Adobe Reader, Java etc.) that get neglected – we all know how the update reminders appear on the screen out of the blue, usually when you’d have something far more important to do. Postponing the updates does, however, mean that each device is running security-wise risky applications – something thugs, thieves and other big meanies are more than happy to take advantage of.

On one hand, wouldn’t it be great to be able to work without constant update reminders, and on the other hand, wouldn’t it be even greater to keep your company’s data security level where it should be? As we have time and again stated, this is precisely the big picture and a challenge practically each company and organization has to react to, one way or another.

Why automating your security updates matters?

An organization’s data security has several areas, all equally important. It may be a cliché but it’s true: the level of data security is just as strong as its weakest link. Bearing this in mind, there’s no way for us to guarantee that once your security updates are automated all is well and security flaws safely blocked.


There are a few things that make automated plug-in security updates well worth considering for every company. First of all, almost every workstation uses plug-ins. Secondly, plug-in security updates just keep on pouring to workstations. Thirdly, a significant number of cyber attacks come through plug-ins. And fourthly, it is actually relatively easy to automate plug-in security updates for workstations.

These four points give a solid basis for our argument: You should always automate plug-in security updates. Automated security updates are possible, sensible and cost-effective. Automating is a reasonably simple, or at least effortless procedure, which secures a significant portion of an entire organization’s security matrix.

So there you go, pretty undeniable arguments for automated security updates, wouldn’t you say?

How to automate your security updates?

For automating plug-in security updates all you need is the right tool (for instance Centero Software Manager). With the tool you can run the most recent update packages on workstations in a centralized manner, according to your chosen schedule, using the desired settings (user-specific, for instance). For the end user the endless updates cease to exist, and for the IT support it is easier to make sure each workstation’s applications are up to date.

Do you know what’s the status of your organization’s application updates? Can you estimate how big a risk plug-ins waiting for an update are for your organization?

You can order a free instant analysis of your plug-in updates from us. The analysis is an easy way to find out how automated plug-in security updates can help your organization. Fill out a short questionnaire and sign up for the analysis here.

Read more on this topic:

May’s Patch Tuesday

May’s Patch Tuesday On May 12th, summer finally arrived to Finland, as did the patches from Microsoft’s Patch Tuesday. Tuesday saw patches for 55 vulnerabilities. The number is rather small compared to wintertime, when there are more than 100 patches each month, almost without exceptions.   Key points The highest CVSS for the vulnerabilities is […]

Check out, that Java is properly used under the new terms of use

Since Oracle announced, Java will not be free anymore in case of business use, every Centero Software Manager (CSM) customer must notice changed terms of use and makes sure, that Java is used under these terms. Read our detailed service announcement and instructions from here.