What are the best practice in patching IntelliVM (iVM) profiles to ensure maximum effectiveness of the Malware Analysis appliance (MA)?
The iVMs should use the most basic image available with all auto updates disabled.
By using the unpatched iVMs the MA will be able to detect potential risks ensuring that machines, patched or not, are reporting all malicious code and/or packages scanned.