NZ Cert Security Warnings

NZ Cert has released two security advisories this week regarding security vulnerabilities that present a high risk to systems connected to the Internet.

  • The first advisory warns of known active attacks against a previously patched SharePoint vulnerability to compromise corporate websites.
  • The second details a newly patched vulnerability in Microsoft Remote Desktop Services on older operating systems (Windows 7/Server 2008 R2 and earlier). It is expected that exploits will be developed and used against this vulnerability in the near future. Microsoft has also released patches for unsupported software, including Windows XP and Server 2003.

Recommendations

CCL recommends that clients remain diligent about implementing and maintaining strong security controls and practices for all public facing systems. This includes ensuring that the entire software stack, from the OS to third party applications, is kept fully patched against known vulnerabilities.

Specifically, we recommend that security patches for the SharePoint and RDS vulnerabilities are tested and implemented as soon as possible, with priority placed on systems connected to the Internet.

If you have any concerns about potential risks to existing systems or would like to discuss ways CCL can help provide visibility to any exposed systems, please reach out to your Customer Relationship Manager or Service Delivery Manager.

References

https://www.cert.govt.nz/it-specialists/advisories/vulnerability-microsoft-rdp-services/

https://www.cert.govt.nz/it-specialists/advisories/microsoft-sharepoint-vulnerability-being-exploited/

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604

Brenda Caseley

About Brenda Caseley