https://www.bleepingcomputer.com/news/security/threatlocker-patch-management-a-security-first-approach-to-closing-vulnerability-windows/

Patching vulnerabilities is one of the most basic principles of cybersecurity — and one of the hardest to execute consistently and securely at scale.

In today’s threat landscape, adversaries routinely exploit vulnerabilities within hours of public disclosure. Yet, operational constraints, patch instability, and incomplete visibility into assets make it almost impossible for many organizations to patch fast enough without introducing new risks.