One of the discussion topics surrounding this release is what priority to put on rolling out patches rapidly versus mitigating the risk of a successful exploit.
Factors that come up in discussions:
- can I patch quickly? Some systems may stop working or be compromised if patched. It takes time to test patches in the lab, staging, and then roll out into production.
- have I got the resources to run decoys, honeypots etc?
- have I got the necessary incident response capabilities if an attack is found?
If you have the platform and procedures in place to rapidly roll out decoys and detection you could buy some time to roll out your updates.
Worth thinking about?