CISA's BOD 26-04 replaces severity-based patching with an exploit-evidence model and remediation clocks as short as three days, fleet-wide, no exceptions. Peter Pflaster and Jason Kikta unpack the four urgency signals, the 16-row decision tree, and the shift from "justify the patch" to "justify why you can't." They also cover what it means for contractors, cyber insurance, and the future of Patch Tuesday. If you own patching or vulnerability management, start here.
Podzilla Summary coming soon
Sign up to get notified when the full AI-powered summary is ready.
Free forever for up to 3 podcasts. No credit card required.
Listen to This Episode
More from Autonomous IT
Patch [FIX] Tuesday – [Nothing Weaponized, Everything Exposed], E33
Patch [FIX] Tuesday – [AI Hits the Hat Trick], Ep. 32
Patch [FIX] Tuesday – [Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31.
Autonomous IT, Live! The Math of Modern Attacks, E07
Get summaries like this every morning.
Free AI-powered recaps of Autonomous IT and your other favorite podcasts, delivered to your inbox.
Free forever for up to 3 podcasts. No credit card required.