Skip to main content

Windows Critical Update FAQ

Friday, March 11, 2022

Microsoft released a software patch on Tuesday, January 14th to mitigate significant vulnerabilities discovered by National Security Agency (NSA) researchers in Windows operating systems. While the Cybersecurity and Infrastructure Agency (CISA) is unaware of active exploitation of these vulnerabilities, once a patch has been publicly released, the underlying vulnerabilities can be reverse engineered to create an exploit. Aside from removing affected endpoints from a network, applying this patch is the only known technical mitigation to these vulnerabilities.