Do You REALLY Need Windows Updates?

Подписаться 35 тыс.

Просмотров 7 тыс.

50% 1

Windows updates are annoying, but is it really safe to disable them?
Some people recommend blocking updates, and will tell you antivirus or common sense is enough to keep you safe. I'll show you what could happen if you don't install the updates, antivirus or not!
In this video I'll demonstrate how easy it is to hack a Windows 7 computer that hasn't been updated, and how a simple update can protect you.
💬 Follow Me
/ andrewmrquinn
#Windows #WindowsUpdate #CyberSecurity

Опубликовано:

29 сен 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 92

@ВиталийОвчаренко-и1н 6 месяцев назад

The different stages of solving problems with updates on all versions of Windows include checking for updates, running the Windows Update Troubleshooter, manually installing updates, checking internet connection, and pausing updates. The target users for these updates are Windows users who encounter issues with downloading, installing, or managing updates on their devices.

@Dan-un4jy 4 месяца назад

The reasons you give for users not wanting to update doesn't reflect "ALL" the reasons to let the "USER" decide if they want it on or off. You showed us the dumb ones and left it at that. That's a biased version. If Microsoft update content was "ONLY" security you'd be spot on! But it's not and you're not. There's not a single software/app that isn't using every method possible in trying to convince you to open your wallet to them. With some software, MS mandatory update will not "file save" before the shutdown. Over the past 10 years I've lost 100's of work hours to Microsoft update shutdowns. In my work schedule there is no "safe time" to allow updates. I have my own methods for backup and mandatory MS update doesn't work with it. I want to review their update files and initiate updates based on my needs and on my schedule, not theirs. There is no solid reason for "mandatory updates". Ignorant users is not a reason. They are now and always will be an intrusion. If users want to be stupid, that's their prerogative. But then, stupidity isn't the premise for "mandatory" updates, is it? After every update I'm daunted with the task of a reconfigure to get my OS back to the way I had it configured before they stepped on it. Can you please tell us why my configuration required a change? I can ..... I killed their unwanted intrusions, marketing and I adjusted the permissions. They are so petty they even change the settings in file explorer back to default. My first PC was a DOS dual 5" floppy with 128K ram and no hard drive. The only internet was a CBBS with one Internet provider using a 2400 baud modem. I've seen MS updates go from legit to outright intrusive. Just once I'd love to see an MS version labeled "Not for Idiots - No Marketing - No Demo Software Bloat - Last Version". And I'd pay any price for that option.

@heatherallingham7120 2 месяца назад

"Inconvenience"? Do you think THAT is what people are whining about? Dear God, that's the LEAST of our issues. Yes, yes, we do them, but these so-called "beneficial" updates ALSO include processes that cause serious problems with our computers after each one - often shutting them down - in other words, something bad will happen to your PC or laptop whether you choose to update or NOT. Their useless "advice" is always to "close unnecessary applications running in the background", but will not display what those might be. We're forced to buy new computers, pay a 3rd party to repair them or - I guess - fork out the cash to study to become IT specialists ourselves. Oh, and updated PC's can also get hacked. Make NO mistake, this IS a racket and it IS deliberate.

@yewest6073 2 месяца назад

Updated my windows and now the graphics card isn't being detected 💀

@feelshowdy 24 дня назад

Doesn't Windows from 10 onwards differentiate feature updates from security updates? You can turn most frivolous updates off while keeping security ones coming.

@ProTechShow 24 дня назад

@@feelshowdy Not anymore. This was the case before Windows 10, but those days are gone. You can't install just security updates now because the monthly security fixes come bundled with non-security fixes as well in the same package. The only exception is what's known as out-of-band patches when something is so high risk and is being actively exploited that Microsoft releases a standalone update outside the monthly schedule, because it's too urgent to wait. These are only a very small minority of security updates, though. The "feature updates" are significant annual upgrades and are more like a Windows version update than a regular patch. Deferring them for a while is fine, but Microsoft only supports old versions for a limited time and then they stop getting any updates, including security.

@feelshowdy 24 дня назад

@@ProTechShow Oh I see, that's very unfortunate. I run a custom '""LTSC""" Win10 installation, but it's just a set-aside partition on my laptop for gaming (I actually use Linux for everything else I care about). Still, I would never think of blocking updates on it. I like to be safe.

@megopcutubeix7419 Год назад

It's not that you're wrong. But the other person is slightly right. If you're behind a router, you'd have to have exposed services NAT'ed to your computer to be vulnerable. As you said, if I can see you, I can target you. But you're not really targetable (in the general sense) behind nat.

@ProTechShow Год назад

That assumes their device never leaves the house, and ignores a multitude of attacks that do not require inbound network connectivity such as drive-by attacks. I didn't show one in the video for the sake of brevity, but NAT offers no protection against them. Even where NAT is effective against a particular attack, on a home network most routers run UPnP which can be used to bypass NAT and attack the device directly. I've seen all of these used in the real world, so I can’t really agree they were even slightly right.

@megopcutubeix7419 Год назад

@@ProTechShow Don't get me wrong. You were right. It's just that there's a difference between being vulnerable vs. exposed :)

@mystriddlery 8 месяцев назад

@@ProTechShow Whens the last time you took your PC out of your house

@ProTechShow 8 месяцев назад

@@mystriddlery The majority of PCs today are laptops and are portable by design. Even tablet PCs outsell desktops these days. To answer your question: every time I go to work.

@mystriddlery 8 месяцев назад

@@ProTechShow The majority of laptops sit in one place most of their lives and hardly ever leave the house theyre in. Majority of viruses come from you clicking some dumb link, which is completely irrelevant from microsoft updates.

@maltesetony9030 Месяц назад

Quality control on Updates is naff - that's the problem. I just installed updates & got a black (not blue) screen of death & Chrome crashed.

@ProTechShow Месяц назад

Can't disagree. It's got to be difficult to get it 100% right given the near-infinite combinations of hardware and software out there, but they don't even seem to catch the basics half the time.

@triggerhippy2826 4 месяца назад

The only computer that isn't hackable is one that's switched off, unpluged locked in a 1" think steel box and the then buried under a foot of cement

@ProTechShow 4 месяца назад

Someone would still take it as a challenge!

@SanjoManigos Месяц назад

So this is why my windows defender gone and had to reinstall windows...🤔i will never disable windows update ever even if it's so annoying 😅

@Jaba3Infamous Месяц назад

Don't want to bother but I remembered why I never updated windows. I spam "power plan" does not open or react at all. The same with network settings. Mozzila takes 5 seconds to startup and that's only day 1.. Literally had 0 problems on previous version. Can I somehow roll back??

@ProTechShow Месяц назад

You can usually uninstall the updates, but personally I'd try to find a solution as what you're describing doesn't sound normal. Worst case, a clean install might help, although it's a bit it of an extreme measure.

@Akkleptos 22 дня назад

I hear you, but Linux updates are nowhere as intrusive as Windows', so most people don't reallly have a problem with them except when a kernel update breaks a package, but there are fixes for that.

@ProTechShow 22 дня назад

In general I'd agree but in my experience it also depends on the distro. I can recall a RHEL update hosing a server maybe a couple of times in the last 10 years, which is definitely less frequent than Windows. Fedora, on the other hand, feels like playing Russian roulette every time I update.

@idcrafter-cgi Год назад

Linux makes Updates a lot more comfortable Compared to mac or windows if you don't use offline updates. Offline on the other hand male updates more stable but it will take a bit longer.

@ProTechShow Год назад

No arguments here. I've had one Linux update break a server in the last 2 years. Microsoft... I'm losing count!

@aafreenandnubaid 6 месяцев назад

@@ProTechShow Linux is trash. NO START MENU AND BARELY INTERNET AND TASKBAR IS LEFT , Linux is just horrible.

@ProTechShow 6 месяцев назад

What are you on about? 😂 Linux has several desktop environments to choose from, and with the common ones you can choose where the task bar goes and if you want a start menu or not. All of the major web browsers from Windows like Chrome, Edge, Firefox, Opera, etc. can be installed on Linux. There are valid reasons to be critical of Linux but you've missed the mark here.

@Ignost 2 месяца назад

The update bricking my computer 4 times in a year says otherwise...

@DNFrozen1 Месяц назад

I put a lot of effort into customizing win 11 so that is useable for me. that took many registry changes and some external software. I'm 100% sure that windows update will just reset most of the keys i changed and i have read that some of the software i use gets disabled by windows update. so i can either enable windows update and scream every time they ruin my PC or I can do regular backups and take my chances to have a fuctional PC.

@ProTechShow Месяц назад

Honestly, I just don't recommend 3rd party tweaking tools. They cause more trouble than they're worth and I don't consider security vulnerabilities to be an acceptable trade-off for having a little bit more customisation. Windows does have a lot of customisation options, but if they're not exposed through a supported means like Group Policy there's no guarantee it won't break in the future. Windows simply isn't built for very granular tweaking, so if you're going to use Windows you should learn to live with the way Windows works. If you want to heavily customise your operating system you may find Linux to be more to your liking.

@DNFrozen1 Месяц назад

@@ProTechShow I searched for HOURs tryting to make the border of programms windows thicker so that they are not just 1px and in the end it turns out that even with registry hacks it became impossible because a recent windows update didn't just reset the registry key. it removed the fuctionality completely. all these small changes together have a huge positive impact on my user experience. and about Group Policy... haave you ever tried to disable windows defender via group policy? it turns itself right back on because microsoft does not respect changes that i want if they don't feel like it. No system will ever be 100% secure no matter what you do. so it all comes down to trade offs. Microsoft is not our trustworthy friend that protects us. they want our data and personal information as much as maleware developers and if they have their way they will install their own maleware like Copilot on your PC and capture your screen. I do hope that linux wiill become an actual alternative at some point but there is just too much software and drivers that does not exist to make the switch.

@denson877 2 месяца назад

i absolutely love the demo. would you be prepared to do a similar demo for windows 11 (with the outlook exploit for example)? i would love to use your demo to convince management to invest in a vulnerability management solution, and this would be great help.

@ProTechShow 2 месяца назад

Thanks. I prefer not to demonstrate recent exploits because people who don't update regularly are still vulnerable to them and I don't want the content of my videos to be abused for nefarious purposes. Demonstrating older exploits is safer because it gets the point across without providing something that could be used to attack a relatively modern system.

@JoseIgnacio-u8e 3 месяца назад

What would happen if I keep Windows 10 off the internet, so I can avoid all that, will it work?

@ProTechShow 3 месяца назад

If you keep it on a completely isolated network that is a viable option. It's usually not practical for most use cases, but there are scenarios where the impact of a computer failure is so great that the safest thing to do is not let it talk to anything else. They're usually pretty specific scenarios, but in principle if you keep your computer disconnected from everything else then you're pretty secure.

@denson877 2 месяца назад

@@ProTechShow IoT/OT for example is quite often not connected to the internet. Even in these cases offline patching CAN be recommended. Think of an attack scenario where a malicious employee connects an USB to an offline machine. If the machine is not properly hardened and/or patched, this still leaves you with numerous risks.

@paulblart5358 9 дней назад

This guy is full of it. I disabled them permanently and nothing has happened in over three years. Windows should have a way to permanently disable them. Enough of the games. The world has had enough.

@ProTechShow 8 дней назад

I didn't wear a seat belt for 3 years and didn't have a car accident, therefore seat belts don't protect you - same logic.

@AlAn-gi3mq 6 дней назад

@@ProTechShow but can windows kill us ? we wear a seatbelt for safety our life, but computer ? if got hacked then just reinstall, simple asf, windows should just make 2 variable to us, you need update then press update, you dont need update then dont bother us. like android

@AlAn-gi3mq 6 дней назад

@@ProTechShow as pc for gaming, i dont need windows update, windows update just ruin fps

@AlAn-gi3mq 6 дней назад

@@ProTechShow and can you tell me how to we got hacked when only play at home and using lan, and as pc only for game we install from steam,riot/ official gamestore

@ProTechShow 6 дней назад

@@AlAn-gi3mq Several questions there so I'll try to cover them all: 1. This channel is primarily aimed at IT professionals (hence "Pro"). They do a lot more than sit at home and play games on steam, and they have a professional responsibility. 2. There was a vulnerability patched by last month's Windows updates that allows someone to take control of your computer just by sending it a specific type of packet. Your computer could reject the packet on its firewall and still be compromised. In theory you could be attacked by simply starting an online game that has a bad actor also playing it at the same time, visiting a website that has been compromised, putting your device on a network with a compromised device (e.g. public WiFi hotel, coffee shop, etc.), or just by being connected to the internet at home and a bad actor catching you with a random port scan. The exploit for this is not known to be in the wild yet, but now the patch has been released it will get reverse-engineered and exploited. You should install the update before that happens. 3. Bad actors don't need to kill you to do damage. Compromising your devices can result in your money or personal information being stolen, which can further lead to fraud and identity theft. For the core audience of this channel, it typically results in lost revenue, significant downtime, reputational damage, and financial/regulatory penalties. On multiple occasions I have personally witnessed companies being hit to the tune of hundreds of thousands, all because someone in the company didn't install an update.

@RandomHuman1103 7 месяцев назад

Aw perfect,now a recent update error makes me easy pray and i can`t even make windovs update work anymore...perfect🤢

@Jaba3Infamous Месяц назад

Are you slow? Why don't you comment on the fact that you can update only the security features and not the rest?

@ProTechShow Месяц назад

Because it isn't true. With the release of Windows 10, Microsoft moved to monthly cumulative updates that include both security and non-security fixes. You cannot install just security updates on Windows 10 or 11 like you could with Windows 7. You can defer the annual feature updates (e.g. Windows 11 24H2 when it arrives), but only for a limited time before you stop receiving any updates, including security. The change happened nearly a decade ago - it's a little ironic to be calling people slow...

@Jaba3Infamous Месяц назад

@@ProTechShow I've been doing it for 3 years now on windows 10 by downloading only the security update packages from Microsoft. Today I decided to update everything because your video scared me. If what you say is true I won't be able to do it anymore.

@ProTechShow Месяц назад

If you're doing it on Windows 10 then you can't install just security updates because the monthly security fixes come bundled with non-security fixes as well in the same package. You could get them separately on Windows 7/8 but those days are gone. The only exception is what's known as out-of-band patches when something is so high risk and is being actively exploited that Microsoft releases a standalone update outside the monthly schedule, because it's too urgent to wait. These are only a very small minority of security updates, though. I suspect what you've been avoiding are the "feature updates" rather than non-security updates. These are significant annual upgrades and are more like a Windows version update than a regular patch. Deferring them for a while is fine, but Microsoft only supports old versions for a limited time and then they stop getting any updates, including security. The dates for Windows 10 are here. Basically, if you're not on the 22H2 feature pack you won't get any updates, including security. If that's what you just installed then you made the right call and bought yourself another year. learn.microsoft.com/en-us/lifecycle/products/windows-10-home-and-pro

@Jaba3Infamous Месяц назад

@@ProTechShow Thank you for your time and detailed info. I apologize for the insult, you earned a subscriber.

@tipsymaster Год назад

I ask myself this question every time computer starts beeping at 3am when it SUDDENLY finds out that the system disk is encrypted with BitLocker and the key is not inserted😲

@ProTechShow Год назад

Oh no! 🙈 I update and shut down at the end of the day. Would not be popular if it started waking people up!

@dannyl6507 10 месяцев назад

@4:28 "If I can see you I can hack you." In other words go into invisible mode.

@ProTechShow 10 месяцев назад

Not that far off the truth - a firewall would call the port action you need to hide yourself "stealth", so that's basically invisible mode, right?

@Derp__ Год назад

i love the pleasant upbeat music while using an advance exploit to hack a PC. 11/10 would watch again

@ProTechShow Год назад

Haha, love it

@ravbhuva 5 месяцев назад

should I still use Armitage?

@leotimtom6637 11 месяцев назад

Data gathering hiding as update.

@JackPlatt 10 месяцев назад

What in the world is going to happen should Microsoft choose to stop providing updates for Windows 10 after October 14, 2025 and over half of the almost one billlion PC's in the world can't upgrade to Windows 11, because of the strict new TPM 2.0/CPU requirements? Hundreds of millions of people will be left with no Windows 10 updates, relying on antivirus, and don't want Windows 11. Microsoft will see this, but does not seem to care. Windows Updates and common sense behind your keyboard or mobile device, is the best way to stay protected.

@ProTechShow 10 месяцев назад

It's going to be a mess. There are ways to upgrade unsupported machines, but if your only upgrade option requires a clean install (e.g. if you don't any version of TPM) then every annual update will also require a clean install. ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-TFKwz5rDKNY.html

@mystriddlery 8 месяцев назад

No windows updates, sounds like bliss. Too bad they wont allow it though, windows is literally forcing every computer connected to the internet to upgrade to windows 11 soon. Windows updates arent saving you from anything. This guy in the vid is a moron.

@ProTechShow 8 месяцев назад

They are not "forcing every computer connected to the internet to upgrade". In fact, if your hardware doesn't meet their semi-arbitrary requirements they will try to block you from upgrading. I'm not defending Microsoft's approach to Windows 11 upgrades but 100% of what you've said here is wrong.

@mystriddlery 8 месяцев назад

@@ProTechShow Why do you think they are phasing out windows 10 so quickly then, or did you miss that news? My computer 'doesnt meet the requirements' for windows 11 but they still forced it on my computer. I have windows 11 now, and it still says my computer isnt compatible for it lol.

@ProTechShow 8 месяцев назад

@@mystriddlery Microsoft's typical support lifecycle for their operating systems ends after 10 years. Windows 10 was released in 2015, support ends in 2025 - there's nothing sudden about it.

@sandymundhe4171 7 месяцев назад

Awsome content ❤

@ProTechShow 7 месяцев назад

Thanks!

@melhiore Год назад

I use common sense... I install updates, simples...

@ProTechShow Год назад

It's amazing how uncommon common sense actually is!

@Nick41622 10 месяцев назад

A fully updated PC and browser are more important than an anti-virus.

@mystriddlery 8 месяцев назад

Because microsoft will brick your computer if you dont. Which makes their software the virus.

@JackPlatt 10 месяцев назад

I always thought that someone has to open the file or visit the site to be exploited. I feel paranoid.

@ProTechShow 10 месяцев назад

Not always. If you have a vulnerability and an attacker can make a connection to your computer, you're in trouble. The most common way this starts is from a website or attachment, but worms in particular will attempt to spread by attacking anything on their network (which could be home, work, school, public wifi, etc.). If it's a device permanently exposed to the internet like a server or a firewall then anyone can have a crack at it at any time.

@mccannger Год назад

Point about installing updates PERFECTLY made. Being able to do so much with Kali within minutes and then keep the exploits going without the user even being aware is TERRIFYING. Thanks for (hopefully, provided they listen) keeping folks right on this stuff! I'm really glad Windows now ships with with firewall and other protections that folks have to go out of their way to disable/not update. Using Linux instead ... erm, tried Ubuntu 20.04 recently and it's OK, but I'm way more productive using Windows and so much more software runs on it. That last point is the key takeaway for me: it's way easy/convenient on Windows to install software (or click links which can result in software being installed), so do yourselves a favour folks, keep out of the way of the updates 😃

@ProTechShow Год назад

Thanks! We can but hope...