On the second (US) Tuesday of each month, Microsoft issues its Patch Tuesday updates. In the past, it has provided advance notification of which products will be affected — but now that’s only going to be available to Premium customers.
Tuesday picture from Shutterstock
Microsoft announced the changed approach in a blog post. Its argument is that most people don’t pay attention anyway. “While some customers still rely on ANS, the vast majority wait for Update Tuesday, or take no action, allowing updates to occur automatically,” the post noted.
There’s an undeniable logic to not providing full details of patches until after they have become available — that reduces the possibility of vulnerabilities being exploited before a fix is available. And the information will still be available once the patches are released (so that’s when we’ll be writing about them). However, given how often people screw up the basics in security, I’m not entirely comfortable with producing less public information about what’s happening. What do you think?