On August 13th, 2019 it was announced that a serious vulnerability was discovered that affects pretty much every version of Windows OS for servers and PCs. I know right.
Here are some links to more information about this serious security flaw.
Here are the actions you need to take immediately to patch and protect your computer or server:
- Run Windows Updates and reboot your computer/server immediately.
- Turn on Network Level Authentication in your Remote Desktop Settings on your servers if you do not have this enabled already. See below for detailed instructions on how to accomplish this.
First- Open the Control Panel (You can search for Control Panel in newer version of Windows.) Once the control panel is open click "System and Security".
Next, click "System"
Now click "Remote Settings".
Lastly, at the bottom make sure "Allow remote connections" is selected AND "Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended) is checked.
This action will ensure NLA is turned on thus further protecting your server. Once you have done Windows Updates this new exploit should be patched but you should always run Network Level Authentication.