Managed Sentinel – Alert 235

Alert IDMS-A235
Alert NameMissing Security and Critical Updates (non-OS)
DescriptionThis alert identifies non operating system security and critical updates that are missing from Windows computers monitored through Azure Security Center.
Severity LevelHigh
Threat IndicatorUnpatched or outdated software
MITRE ATT&CK TacticsInitial Access
Priviledge Escalation
Defense Evasion
Credential Access
Lateral Movement
Log sourcesAzure Security Center
Recommendations1. Apply patches as per instructions
2. Scheduled CR may be needed based on your corporate policies
3. Azure Security Center will report within 24h the status of your system in terms of missing updates