Sunday 05 July 2026 08:49:56 GMT+02:00

Netcrook

HomeManifesto
News
Techcrook
Geocrook
WikicrookTeamAppContact
EnglishItalianoArabic

WIKICROOK

Platform update

A core software update that changes how a security product runs, separate from threat-signature updates.

A platform update is a core software update that changes how a security product runs. In Microsoft Defender and similar tools, it is different from a security intelligence update, which only refreshes threat detections, signatures, and heuristics. Platform updates may modify services, drivers, management behavior, or the way the product integrates with the operating system.

This matters because the security stack is itself part of the attack surface. If a platform component is vulnerable, attackers may abuse it to weaken protection, disrupt telemetry, or gain execution in a trusted security process. Defenders should treat platform updates as operationally critical: track versions, confirm deployment on all endpoints, and verify that the product still reports normally after patching. In practice, good patch hygiene requires updating both the platform and the detection content.

← WIKICROOK index