Windows Vulnerability Found 2019

On August 13th, 2019 it was announced that a serious vulnerability was discovered that affects nearly every version of Windows OS for servers and PCs.  This is a general customer service announcement and this issue has no effect on your web hosting here at Surfside Web.

Here are some links to more information about this serious security flaw.

https://www.bleepingcomputer.com/news/security/microsoft-fixes-critical-windows-10-wormable-remote-desktop-flaws/
https://blog.qualys.com/laws-of-vulnerabilities/2019/08/13/august-2019-patch-tuesday-93-vulns-29-critical-7-remote-desktop-vulns-hyper-v-dhcp-adobe-vulns
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182

Here are the actions you need to take immediately to patch and protect your computer or server:

Run Windows Updates and reboot your computer/server immediately.

Turn on Network Level Authentication in your Remote Desktop Settings on your servers if you do not have this enabled already.
– First- Open the Control Panel (You can search for Control Panel in newer version of Windows.)  Once the control panel is open click “System and Security”.
– Next, click “System”
– Now click “Remote Settings”
– Lastly, at the bottom make sure “Allow remote connections” is selected AND ” Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended) is checked.

This action will ensure NLA is turned on thus further protecting your server.  Once you have done Windows Updates this new exploit should be patched but you should always run Network Level Authentication.

Feel free to open a support ticket if you have any questions or require assistance.

Ready to Learn More About Your Project?

We hope you will give us the opportunity to work with you and watch your online success grow. Contact us today for a consultation and quote.