December 2017 1 Why is patching so important? In their 2015 Data Breach Investigation Report, Verizon found that more than 70% of attacks exploited known vulnerabilities that had patches available. You maybe surprised but almost all network and application vulnerabilities exist because of: • Out of date third party software • Unpatched operating systems • Misconfiguration or weak passwords • Configuration left unchanged from default settings • Poor coding practices The cold hard facts are that a lack of an effective patch management policy leads to a significant number of vulnerabilities. Patch management can hardly be described as glamorous and can easily fall to the bottom of the to-do list, or handed off to a third party. Version Recon allows you to regain control of this low profile but highly important task. What is it? Version Recon is a patch update alert assistant. It is easy to use and emails you updates as they are released. Version Recon isn’t a patch management system so it doesn’t install the updates for you, therefore, it doesn’t require access or permissions to your systems or servers, leaving you in control. What does it do? Whenever any of your services or operating softwares has an update, Version Recon bundles them in to an email that shows you how to download and update them, along with the relevant release notes. As part of setting up the service, a watch list is created specific to your needs, so the email you receive is 100% relevant to you. Version Recon sends every available update specific to you, allowing you to tackle all vulnerabilities not just high profile ones. It provides patch information for: • Operating systems • Third party software • Network devices (switches/firewalls) • Smart phones and tablets • Software development frameworks How does it work? You send us a list of all the systems and servers you want on your watch list and we do the rest. You can add and remove things from the list at any time. It’s a simple annual subscription which is priced on the number of systems and servers you apply. We can get this non-invasive system up and running in a matter of minutes. Version Recon is delivered by our trusted partner, Pen Test Partners LLP. haysmacintyre IT Consultants can also work with you to produce an effective patch management strategy to support the benefits of Version Recon. VERSION RECON: PATCHING ALERT ASSISTANT Another day, another high profile cyber attack, many of which could be avoided if an effective patch management strategy was in place to deal with distributing software updates and, more importantly, for detecting and remediating security vulnerabilities. IT Consultants Limited