That is the question…. or at least that is a question I get a lot.  When Windows or another program bugs you to download and install an update, should you? Well, the short answer is YES!  In many cases that update is going to plug a hole that some malicious attacker might use to get in.  That update may also add a feature that you wished was included in that program.

The nice thing about most updates is that you can click the “remind me later” button and continue working.  The problem is that we keep doing that and the update never gets installed.  Then, an attacker plants a virus on our machine through one of the security holes, and we have the hassle of getting our system cleaned.  I agree that these updates seem to nag us when were are in the middle of something important, but it is necessary that they be installed.

Microsoft releases updates on the third Tuesday of the month (aka Patch Tuesday).  Most versions of Windows are set to check for those updates on the following Wednesday, or at least the next time the computer is turned on and accesses the Internet.  The updates come in three types – Critical Updates, Recommended Updates and Driver Updates.  The Critical Updates should be installed as soon as they are available because it is these updates that are plugging those security holes.  The Recommended Updates are usually upgraded versions of programs or improve the functionality of the system.  Driver Updates are for the various hardware devices that you have installed.

New to Windows 7 is what we refer to as the “forced update”.  If you have been putting off those Windows Updates for too long, your computer might just lock you out and install them anyway.  Depending on how many Critical Updates are needing to be installed, it can take several hours.  You cannot stop the install, and forcing your computer to shut down might prevent the system from restarting.  It would have been easier to install the update as they were needed.

Most programs are also set to periodically check for updates, or at least have a button that you can manually check for updates.  It is important that you update these programs as well, especially if they access the Internet or open files that you have
received by email or online.  Adobe Acrobat, for instance, is used to open PDF files.  Those files can contain a hacker’s code, and can exploit a flaw in Acrobat – unless it has been patched.  Java, Flash, .Net Framework and others can also contain the same types of security holes.

So the next time your computer bugs you to install an update, take a few moments and install it.  That might be the perfect time to stand up and stretch, go visit a co-worker, or just do nothing!