On May 11th 2021, Microsoft released a series of fixes that aimed to seal approximately 55 security holes within the Windows operating system and other software (1). The main concern of the initial weakness was that it could be exploited by malware to take complete control over the weakened and vulnerable system without the need of a user. Normally malware will attack a user’s system through the help of the user e.g. clicking on an infected file or link.

The main concern at hand is CVE-2021-31166 which is a specific type of http server flaw that can be found within Microsoft Windows 10 and SAerver 2016 which allows an unauthorised cyber attacker to release malicious code to the operating system (2). In simple terms as a result of this flaw, an individual could obtain access and compromise an operating system through sending malicious data.

This highlights the importance of regularly updating your softwares and systems in order to keep up to date with all patches and avoiding possibilities of your data being compromised as a result of a vulnerability. This is even more vital with ‘wormable’ weaknesses which refers to a flaw that could spread from machine to another without the help of a user.

 


 

Cyber security is now more important than ever. With technology being used by most businesses on a daily basis, it is important to ensure that your data is safely stored and your system secure to avoid vulnerabilities and cyber attacks. For more information on Cyber Security speak to our IT team by calling on 0121 289 4477 or email us at info@solutions4it.co.uk