New Windows Vulnerability Discovered – What You Need to Do Right Now!

On August 13th, 2019, it was announced that a serious vulnerability was discovered that affects pretty much every version of Windows OS for servers and PCs. I know right.

Here are some links to more information about this serious security flaw.

• https://www.bleepingcomputer.com/news/security/microsoft-fixes-critical-windows-10-wormable-remote-desktop-flaws/
• https://blog.qualys.com/laws-of-vulnerabilities/2019/08/13/august-2019-patch-tuesday-93-vulns-29-critical-7-remote-desktop-vulns-hyper-v-dhcp-adobe-vulns
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1182

Take These Actions Immediately to Patch and Protect your Server

To protect your computer from this serious vulnerability, follow these steps:

1. Run Windows Updates and reboot your computer/server immediately.
   
2. Turn on Network Level Authentication in your Remote Desktop Settings on your servers if you do not have this enabled already. See below for detailed instructions on how to accomplish this.
   1. First, open the control panel (you can search for the control panel in newer version of Windows). Once the control panel is open, click on System and Security.

      

   2. Next, click System.

      

   3. Now, click Remote Settings.

      

   4. Lastly, at the bottom make sure Allow remote connections is selected AND Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended) is checked.

      

This action will ensure NLA is turned on, thus further protecting your server. Once you have completed your Windows Updates, this new exploit should be patched, but you should always run Network Level Authentication just to be safe.

 

Need More Personalized Help?

If you have any further issues, questions, or would like some assistance checking on this or anything else, please reach out to us from your my.hivelocity.net account -> Support and provide your server credentials within the encrypted field for the best possible security and support.

If you are unable to reach your my.hivelocity.net account or if you are on the go, please reach out from your valid my.hivelocity.net account email to us here at: support@hivelocity.net. We are also available to you through our phone and live chat system 24/7/365.

 

Additional Links:

Looking for more information on Windows Servers? Search our Knowledge Base!

In need of more great content? Interested in cPanel, Private Cloud, or Edge Computing? Check out our recent posts for more news, guides, and industry insights!