I had a client ask me today “hey, what’s with all the patches and updates lately?”. Without even thinking, I replied “it’s the Anti-Virus of the day”.
I’ve been thinking about that some. If the current Anti-Virus products can’t protect our computers (and it appears they can’t), what can? Patches and updates. The “Bad Guys” are exploiting known vulnerabilities and the only way to stop them is to remove those vulnerabilities.
Is your “Anti-Virus” up-to-date? If not, maybe you should be thinking about creating a policy that defines what exactly should be on your computers, remove what shouldn’t be and then develop a procedure for keeping everything up-to-date.