U.S. Government Gives Microsoft Windows Users “Critical” Warning

US Department of Homeland Security’s Cyber Security and Infrastructure Security Agency (CISA) along with Microsoft and other government agencies are sounding alarms regarding a vulnerability that has been discovered in Microsoft Windows. The vulnerability is so serious that Microsoft has not only released released patches for their currently supported operating systems, but they have also released an “emergency patch” for Windows XP, which was retired several years ago. The potential impact and widespread damage has been predicted to parallel or even exceed the Wannacry Virus, which appeared and caused havoc back in 2017, which we had reported on previously.

This vulnerability has been given the common name of “BlueKeep”. It uses Microsoft’s Remote Desktop Connection (RDP) protocol to allow an unauthorized attacker to connect into a system to steal usernames and passwords. That information is then sent back to hackers. Once the hackers have the credentials, they can then use that information to gain access to systems that may even be fully patched and not vulnerable to BlueKeep.

The systems that are vulnerable to BlueKeep are Windows XP, Windows 7, Windows Server 2000, Windows Server 2003 and Windows Server 2008. Newer versions of Windows are not vulnerable to this exploit, however, do know that it will only take one infected system to cause havoc on the entire network.

If you are currently using any of the retired OS mentioned above, we strongly urge that you download the appropriate patch and install it on the machine or upgrade or replace your machines to a newer operating system as soon as possible. In addition, if you are using Remote Desktop to connect into a business computer from outside the office, then one of the recommended solutions is to implement an SSL or IPSEC VPN solution. Which will allow remote users to connect into an office computer safely without exposing your servers to this vulnerability.

In a worse case scenario, if any of your computer does get infected with any ransomware or any other form of nasty virus, your best defense is having complete and regular systems and data backups to recover. Which is the best way to help insure a full recovery.

DDKinfotech has been helping clients with Managed Services to ensure that their systems are always patched in a timely fashion. We also assist our clients to create a complete backup and disaster recovery process in place to ensure that all their important business information is always protected.

Contact us at 212.997.0600 or drop us an email at hello @ddkinfotech.com if you would like any further information regarding BlueKeep vulnerability.