{“lastseen”:”2025-11-26T11:16:07″,”description”:”\\n\\nIf you’re using community tools like **Chocolatey** or **Winget** to keep systems updated, you’re not alone. These platforms are fast, flexible, and easy to work with\u2014making them favorites for IT teams. But there’s a catch…\\n\\nThe very tools that make your job easier might also be the reason your systems are at risk.\\n\\nThese tools are run by the community. That means anyone can add or update packages. Some packages may be old, missing safety checks, or changed by mistake or on purpose. Hackers look for these weak spots. This has already happened in places like NPM and PyPI. The same risks can happen with Windows tools too.\\n\\nTo help you patch safely without slowing down, there’s a free webinar coming up. It’s led by Gene Moody, Field CTO at **Action1**. He’ll walk through how these tools work, where the risks are, and how to protect your systems while keeping updates on track.\\n\\nIn this session, he’ll test how safe these tools really are. You’ll get practical steps you can use right away\u2014nothing theoretical, just what works.\\n\\nThe goal is not to scare you away from community tools. They’re useful. But they need guardrails\u2014rules that help you use them safely without slowing you down.\\n\\n\\n\\n**You will learn:**\\n\\n\ud83d\udd12 How to spot hidden risks\\n\\n\u2699\ufe0f How to set safety checks like source pinning, allow-lists, and hash\/signature verification\\n\\n\ud83d\udcca How to prioritize updates using known vulnerability data (KEV)\\n\\n\ud83d\udce6 How to choose between community tools, direct vendor sources, or a mix of both\\n\\nIf you’re not sure when to use community repos and when to go straight to the vendor, this session will help you decide. You’ll also see how to mix both in a safe way.\\n\\nThis webinar is for anyone who manages software updates\u2014whether you’re on a small team or a large one. If you’ve ever wondered what’s really inside that next patch, this session is for you.\\n\\nIt’s free to attend, and you’ll leave with clear actions you can apply the same day. **Save your spot here.**\\n\\nFound this article interesting? This article is a contributed piece from one of our valued partners. Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post.\\n”,”published”:”2025-11-26T11:10:00″,”modified”:”2025-11-26T11:10:35″,”type”:”thn”,”title”:”Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools”,”source”:””,”references”:””,”id”:”THN:52F2989656122A41AAD9C755F3FD7AD8″,”bulletinFamily”:”info”,”cwe”:null,”cvelist”:[],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/thehackernews.com\/2025\/11\/webinar-learn-to-spot-risks-and-patch.html”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-11-26T11:16:07″,”description”:”\\n\\nIf you’re using community tools like **Chocolatey** or **Winget** to keep systems updated, you’re not alone. These platforms are fast, flexible, and easy to work…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,12,13,33,7,11,43,5],"class_list":["post-27700","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-security","tag-tapic","tag-thn","tag-vulnerability"],"yoast_head":"\n