If you believe that your upgrade for the windows system is safe, think twice. Investigation made in order of this issue that concerns many, have shown that the smart hackers minds found a way to inject various viruses to intercept the update of the systems of the organizations, in order to come to useful information stored in computer’s hard drives. Although there are many organizations that care for information security and cyber security, however, a group of researchers from the United Kingdom found a way that will show that there are uncertainty and lack of upgrades in the implementation of windows systems in enterprises.
The way cyber criminals skillfully threaten corporations is with the usage of WSUS server, injecting viruses into corporate networks. Although Windows patches are intended for the end users, when it comes to companies and large corporations, the situation is slightly different. First, these updates are sent to WSUS or Windows server update services to corporations, where later the administrators, distribute software upgrades to the computers of the organization that uses them.
This whole "security lack" situation is not a huge surprise to the experts in this area because it is known that WSUS are not using an SSL or secure socket layer. Right here come the vulnerability of these WSUS servers, which due to the fact that are not configured with this SSL security mechanism, often are an easy target of various hacker attacks. Guided by information obtained by researchers on this issue, it is shown that attackers often use low - privileged access, which enables them to easily and seamlessly submit false changes to the computer’s system, in which they are downloaded and installed to the connected computers. Although any upgrades to the system are made by Windows and are automatically encrypted with electronic signatures from Microsoft, however, the skilled criminals showed a higher level, because even though they cannot change, they inject viruses into the update files.
The reason that perhaps is behind this whole mess associated with the reliability of the new updates of the windows systems in corporations is because the update itself, includes more than 25,000 drivers signed and developed by different developers, which just like those provided by Windows, can easily change and reuse for malicious purposes.
However, what is most important is to find a solution to the problem, which shook and alarmed many organizations to commit to increasing concerns about the reliability of their systems. From Microsoft's daily recommendations come to calm the panic and simply following the guidelines given by their administrators to use the SSL standards, the likelihood of any hacker intrusion is reduced. Using a special certificate intended for signing the upgrades, data protection will be brought to a higher level than before.
Now, with the new Windows 10, it requires increased attention, if the flaws in the new updates are not corrected. What remains is for companies is to stay on using older versions that have worked so far, or take the risk of receiving some dangerous malware in their systems. For those less experienced in this area, it is a desirable help of some specialized organizations of risk management, because the reliability of the information would be far greater.
CR Risk Advisory comprises a successful team of professionals offer you service at the highest level so that your system will be secure and your information is protected. So, don’t wait and take some measure and protect yourself!
Contact
CR Risk Advisory