Tag Archives: cybersecurity

NSA Needs You to Update Your Windows Now

A few weeks ago it was discovered that there was a vulnerability with Windows called Bluekeep and Windows users were asked to update their computers. We all know that Windows updates seem to come at the worst time and are tedious and inconvenient, but now the National Security Agency (NSA) is urging you to update your system.

NSA Cybersecurity Advisory

 

On June 4th, they issued a Cybersecurity Advisory addressing the CVE-2019-0708, or Bluekeep, vulnerability. It can exploit the Remote Desktop Services (RDS) on legacy versions of the Windows OS. The following versions of Windows are the ones that need to be updated:

  • Windows XP
  • Windows Vista
  • Windows 7
  • Windows Server 2003
  • Windows Server 2008
  • Windows Server 2008 R2

Microsoft has issued a patch, but they estimate that there are millions of systems that are still vulnerable to attack. Bluekeep is “wormable”, which means that it can spread to other systems without the user doing anything. Some problems that could occur with Bluekeep include Denial of Service attacks, which can cause a large amount of damage in a short time. The NSA states that hackers with malicious intent can exploit the weakness, installing ransomware and attacking other unpatched systems.

How to Protect Your Computer

Make sure that your computer always has the latest updates. Taking some time now to install the patches can save you from major problems down the road. You are not only protecting your computer system, but other systems, including the National Security Systems.

Microsoft has issued the following patches:

  • Windows XP / Windows Server 2003: Security Patch KB4500331
  • Windows Vista / Windows Server 2008: Security Patch KB4499180 or Monthly Rollup KB4499149
  • Windows 7 / Windows Server 2008 R2: Security Patch KB4499175 OR Monthly Rollup KB4499164

Do your part to keep our networks safe from being exploited and keep your operating system updated whenever a patch is rolled out.