SI.L1-3.14.4 — Update malicious code protection mechanisms when new releases are available.
What this control requires
Update malicious code protection mechanisms when new releases are available.
Source: CMMC L1 v2.13 SI.L1-3.14.4 / FAR 52.204-21(b)(1) / NIST SP 800-171 R2 3.14.4 (official control text).
Why this matters
Malicious code protection mechanisms — antivirus engines, signature databases, reputation feeds, and behavioral detection heuristics — are only effective against threats they recognize. Adversaries release new malware variants, exploit toolkits, and obfuscation techniques daily. Outdated protection mechanisms fail to detect these emerging threats, leaving endpoints, servers, and email gateways blind to active campaigns. Regular updates ensure detection engines keep pace with the threat landscape, blocking ransomware, trojans, and fileless attacks before they execute. This control reduces dwell time, prevents lateral movement, and protects mission-critical data from compromise.
What evidence assessors expect
Assessors typically look for: screenshot, CSV export, configuration export. FORCE coaches you through the exact implementation steps and captures each artifact in-platform.
Related controls
See your live posture on SI.L1-3.14.4.
FORCE shows where you stand on this control and walks you through closing it.
Start a free trial tenant →