Device & Update Hygiene
Most attacks exploit known holes that a simple update would have closed. Make updates automatic and stop running software past its use-by date.
When to use
When devices "keep asking to update", after buying new equipment, when you're unsure what's still supported, or to set a standing "keep everything patched" habit across the business.
Steps
1. Turn on automatic updates for operating systems, apps and browsers on every computer, phone and tablet. 2. Prioritise the internet-facing basics - operating system, web browser, email, and anything exposed to the internet - and let them update fastest. 3. Restart devices regularly so pending updates actually finish installing. 4. Replace end-of-life software and hardware that no longer receives security updates (for example, an unsupported Windows version) - unpatched is unprotected. 5. Don't forget the quiet devices: update the firmware on routers, printers, network storage (NAS) and other network gear. 6. Remove software and apps you don't use - every extra program is one more thing to patch. 7. Keep a simple asset list of your devices and key software so nothing is forgotten. 8. Where a critical system can't be updated for compatibility reasons, write it down and plan a safer path rather than ignoring it.
When to call a professional
To manage updates across many machines, or to handle a critical system that can't be patched, ask your IT provider or MSP for a managed patching and risk plan.
ACSC reference: Essential Eight - Patch applications and Patch operating systems (cyber.gov.au/smallbusiness).
Want your agent to fetch skills itself? The Academy MCP serves this whole library.
Connect via MCP