Scout update: Operating system updates
It's common today for very large software applications, including operating systems like Microsoft Windows, to have numerous flaws. Many of these bugs aren't seen by those who use the computers because they don't affect the look and feel of the applications. They lie dormant until someone, such as a researcher or a virus writer, discovers them. Depending on where in the application the bug is, it can have many different effects. The bug could cause a security vulnerability, allowing a computer virus or an attacker to gain information about the system or to even gain control of the application.
Commonly, researchers will report these bugs to the application vendors. Microsoft now releases monthly patches to its Windows operating system and other applications in order to repair these issues. In order to keep the managed workstations in the hospital up to date, ISD downloads these patches when they're announced on the second Tuesday of every month. ISD and Radiology IT then test the patches on the various kinds of computers running all the different supported applications. This testing ensures that when the patches are pushed out to the approximately 4,000 managed workstations that there aren't any problems caused as side effects. Occasionally the installation of patches will require that computers are rebooted, and this is why sometimes you'll see a message on a workstation in the morning to that effect. The result of installing these patches every month is that the risk of virus infection on a computer is greatly reduced.
In April, Microsoft released eight new updates that affect Windows, Outlook email, MSN Messenger and Microsoft Office. These updates close up newly discovered vulnerabilities that could allow a remote computer to compromise a Windows workstation. ISD distributed the new updates to the managed workstations on April 20. The next round of Microsoft patches will be announced on May 11.
If you have other questions about computer security or would like more information, visit the eHelp Web site by typing "ehelp" into your Web browser.
