December 2024 Security Patch Roundup: Critical Updates for Your Digital Estate
At Altiatech, we're committed to helping organisations secure their digital future. Our latest security advisory highlights critical patches and updates that require your immediate attention.
Microsoft's December Patch Tuesday
As a Microsoft Partner, we're closely monitoring Microsoft's latest security releases. This month brings 71 vulnerabilities, with 16 rated as Critical. Of particular concern is a zero-day vulnerability (CVE-2024-49138) in the Windows Common Log File System Driver that requires immediate attention.
Remote Desktop Services users should take particular note, with eleven new vulnerabilities patched - nine Critical and two Important. For organisations using Microsoft Entra (formerly Azure AD), we recommend reviewing these updates as part of your identity and access management strategy.
Adobe's Significant Update
Adobe has released updates for 16 applications, addressing 165 vulnerabilities. As part of our Modern Workspace solutions, we recommend prioritising these updates, particularly for creative teams using Adobe Creative Cloud applications.
Critical Updates from Key Security Vendors
Our strategic partnerships with leading security vendors allow us to provide comprehensive guidance on:
- Palo Alto Networks' critical authentication bypass vulnerability (CVE-2024-0012)
- Fortinet's eight new security patches
- Cisco's December advisories
- SAP's security notes affecting NetWeaver components
Industrial Control Systems Advisory
For our manufacturing and industrial sector clients, we're monitoring seven new security advisories affecting various ICS products. Our team can help assess your exposure and implement necessary updates.
Recommended Actions
Our security experts recommend:
- Immediate patching of actively exploited vulnerabilities
- Scheduled updates for Remote Desktop Services
- Comprehensive review of Adobe products in your environment
- Assessment of industrial control systems where applicable
How Altiatech Can Help
With our expertise in identity management through altIAM and our comprehensive cybersecurity services, we can help you:
- Assess your current security posture
- Implement critical patches
- Manage your identity and access controls
- Ensure compliance with security best practices
Take Action Now
Don't let your organisation's security be compromised. Our team of experts is ready to help secure your digital estate.
Contact Us
- Email: innovate@altiatech.com
- Phone: +44 (0)330 332 5482
Trust Altiatech to keep your systems secure and compliant.
Ready to move from ideas to delivery?
Whether you’re planning a cloud change, security uplift, cost governance initiative or a digital delivery programme, we can help you shape the scope and the right route to market.
Email:
innovate@altiatech.com or call
0330 332 5842 (Mon–Fri, 9am–5:30pm).
Main contact page: https://www.altiatech.com/contact
