As of two days ago, Microsoft patched a bug that has been affecting their systems for around 15 years, which could potentially allow an attacker to run scripts or take control of PCs running any version of Windows. The problem, is that this vulnerability will remain unpatched for any system running Windows Server 2003.
This vulnerability is critical in relation to any network using Active Directory. This bug is exploitable either locally or from a remote location, and may grant attackers administrator level access to the device. Unfortunately, this cannot be fixed as easily as other known vulnerabilities because it is found in the core of Windows. Microsoft states that the highest threat is to organizations that still use Windows 2003, which will only be supported into mid-July.
Microsoft recommends that all systems get patched, and if admins seek further guidance, they should check out: Microsoft Support
In this blog post, we provide five cybersecurity awareness tips for employees to help them practice better cyber hygiene and defend sensitive data.
Click here to access KnowBe4’s FREE Resource Kit containing resources to share with employees throughout Cybersecurity Awareness Month!
We explore the top 3 red flags of phishing that businesses & employees should be aware of in order to recognize & mitigate a threat.