82. Your IT Company Is Probably Not Patching Your Systems — Here's How to Catch Them
Hosts:
Justin Shelley — Phoenix IT Advisors | https://www.phoenixitadvisors.com/
Note: Co-hosts Mario Zaki and Bryan Lachapelle are absent this episode — they're representing their firms at a trade show in Dallas.
Justin Shelley — Phoenix IT Advisors | https://www.phoenixitadvisors.com/
Note: Co-hosts Mario Zaki and Bryan Lachapelle are absent this episode — they're representing their firms at a trade show in Dallas.
Did you know there are 130+ new cybersecurity vulnerabilities discovered every single day? That's nearly 50,000 last year alone — and the number is growing exponentially, fueled in part by AI-powered attacks. In this solo episode, Justin Shelley breaks down one of the most overlooked and mismanaged areas of cybersecurity for small and mid-sized businesses: patch and vulnerability management.
Most business owners assume their IT company is handling it. Most of the time, they're wrong.
In this episode, Justin covers:
In this episode, Justin covers:
- What patching actually is — and why it's far more complex than "set it and forget it"
- The CVE list — the publicly available database of known vulnerabilities and why it should terrify you
- Zero-day vulnerabilities — what they are and why they're especially dangerous
- The reactive spiral of death — the real reason your IT company may be dropping the ball (and it's not because they don't care)
- The reboot problem — why something as simple as restarting a computer is one of the biggest obstacles to keeping your business secure
- Legacy systems and blind spots — Windows 10, old software, browsers, firewalls, and all the things that aren't getting patched even when you think they are
- Two specific questions you should be asking your IT company right now — and what to do if they can't answer them
Justin also shares a personal story about a client breach caused by an outdated version of Microsoft Office — one that nearly destroyed that business and ended a client relationship — to illustrate just how real and costly this problem is.
This is episode 8 of the Cybersecurity Basics series. If you haven't already, go back and listen to the previous episodes on frameworks, identity and access management, endpoint security, backups, email phishing, and network security.
🎯 Free Resource: Want to know if your business is actually protected? Visit unhackmybusiness.com
for show notes, the full video recording, and to schedule your free cybersecurity risk assessment with Phoenix IT Advisors — no matter where you're located.
for show notes, the full video recording, and to schedule your free cybersecurity risk assessment with Phoenix IT Advisors — no matter where you're located.
Creators and Guests
