Patching new wormable vulnerabilities with your Microsoft Remote Desktop

By -




Patching new wormable vulnerabilities with your Microsoft Remote Desktop

Microsoft is urging users to patch a series of critical, BlueKeep-like vulnerabilities in Windows that could be used to spread malware and affect as many as 800 million machines.

Microsoft released a set of fixes for Remote Desktop Services that include two critical Remote Code Execution (RCE) vulnerabilities, CVE-2019-1181 and CVE-2019-1182. These two vulnerabilities are ‘wormable’, meaning that any future malware that exploits these could propagate from vulnerable computer to vulnerable computer without user interaction. The affected versions of Windows are Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10, including server versions. 

Microsoft not only released these 2 advisories, but they also released updates for 94 vulnerabilities. Of these vulnerabilities, 26 are classified as Critical, meaning that if these updates are not done ASAP, your computer will be vulnerable.

If you are not MJJT customer yet, please act fast seeking protection by go to http://www.securedtransactions.com and fill out the request form. Someone from our Cyber Security team will contact you promptly. You may also email us at cs@mjjt.us or call us at 212-868-0688 Ex. 6922.

Comments

Post a Comment

Popular posts from this blog

Do you have one of Vulnerable to the Top 8 Most Exploited Vulnerabilities?

By -
Image
The Most Exploited Vulnerabilities in 2016-2019 as Reported by the FBI. It probably won't surprise you that 7 of the 8 most exploited software vulnerabilities are to be found in Microsoft products. Their widespread use across organizations and institutions makes them an ideal candidate for cybercriminals. According to U.S. Government technical analysis, malicious cyber actors most often exploit vulnerabilities in Microsoft's Object Linking and Embedding (OLE) technology. OLE allows documents to contain embedded content from other applications such as spreadsheets. But also Adobe Flash Player makes it to the list. Older Unpatched Systems are Vulnerable for Cybersecurity Attacks   A recent report on the most exploited vulnerabilities by the Cybersecurity & Infrastructure Security Agency (CISA) and the FBI listed the most routinely exploited vulnerabilities in the wild. The interesting thing is that most of these vulnerabilities are pretty old, yet cyb
Read more

Patch Right Now – Microsoft Windows 10 and Server 2016/2019

By -
Image
Anyone running Windows 10, Windows Server 2016 and Windows Server 2019 is "strongly encouraged" to install Microsoft patch right now. Microsoft January 2020 Patch Tuesday fixes 49 security bugs after the US National Security Agency (NSA) discovered a critical bug in the operating system. These 49 vulnerabilities, 7 are classified as Critical, 41 as Important, and 1 as Moderate. Microsoft patched a spoofing vulnerability present in the Windows user-mode cryptographic library, CRYPT32.DLL, on Windows 10, Windows Server 2016, and Windows Server 2019 systems. The vulnerability could allow for remote code execution. In other words, allow hackers to compromise trusted network connections using spoofed certificates to deliver malicious executable code under the pretense of a legitimately trusted entity, commit man-in-the-middle attacks, and decrypt confidential information. For example, HTTPS connections, signed emails and files, and user-mode processes launching si
Read more

Emergency Patch Released for SMBv3 Vulnerability

By -
Image
    Emergency Patch Released for SMBv3 Vulnerability Microsoft released the KB4551762 security update to patch the RCE vulnerability found in Microsoft SMBv3 a couple of days after the flaw was disclosed as part of the March 2020 Patch Tuesday. The Windows SMBv3 Remote Code Execution vulnerability, tracked as CVE-2020-0796 and dubbed as SMBGhost, allows a remote and unauthenticated hacker to execute the arbitrary code on an exposed device. Microsoft stated that: "To exploit the vulnerability against a server, an unauthenticated attacker could send a specially crafted packet to a targeted SMBv3 server. To exploit the vulnerability against a client, an unauthenticated attacker would need to configure a malicious SMBv3 server and convince a user to connect to it." Microsoft originally planned to fix the flaw as part of its March 2020 Patch Tuesday update but pulled the plug at the last minute. Now the tech giant followed up with KB4551762 to fix the SMBGhost
Read more