New Vulnerabilities potentially allowing a “wormable” WannaCry-like outbreak
Aug 29, 2019 | Radiflow team
By Radiflow CTO, Yehonatan Kfir
Microsoft recently released a set of fixes for Remote Desktop Services (RDP) that include two critical Remote Code Execution (RCE) vulnerabilities that allow hackers spread malware to infect both your PC and others without your knowledge or interaction.
Microsoft also confirmed that the flaws CVE-2019-1181 and CVE-2019- 1182 are “wormable” similar to the BlueKeep remote desktop protocol vulnerability discovered in May which many worry could lead to another global cyberattack like 2017’s WannaCry ransomware outbreak.
Mitigation of those vulnerabilities requires patching Windows systems and using network devices for authenticating RDP sessions. Radiflow recommends that our clients enable the Authentication Proxy (APA) in Radiflow‘s Secure Remote Access gateway and to block RDP connections.
Clients should contact Radiflow to receive updates to iSID in order to detect those vulnerabilities and any malicious activity related to them.
Microsoft recently released a set of fixes for Remote Desktop Services (RDP) that include two critical Remote Code Execution (RCE) vulnerabilities that allow hackers spread malware to infect both your PC and others without your knowledge or interaction.
This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.
Strictly Necessary Cookies
Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.
If you disable this cookie, we will not be able to save your preferences. This means that every time you visit this website you will need to enable or disable cookies again.