Thank goodness this has turned out to be a dud so far. It did prove to us, once again, how valuable and forward looking our investment in Altiris products has turned out to be For our part we prepared for this is several ways:
1. With patch management we ensured that the relevant Microsoft patch was pushed out to all clients and moniroed the compliance throughout.
2. We put a host integrity check on our Sygate clients to put users who did not have the patch in a locked down mode.
3. We prepared jobs in NS to disable autorun features on USB devices.
4. Monitored and remediated virus signature levels.
I'm not foolish enough to believe that we aren't immune to attack but at least, perhaps, we made it a little harder for the bad guys.
Of course, our workstation services team insisted that I put all this stuff on CDs, just in case machines needed to be yanked off the network.