Default WSUS Configuration Puts Organizations at Risk: Researchers

Uh-Oh!

Organizations that fail to configure Windows Server Update Services (WSUS) to use SSL are exposed to cyberattacks, researchers have warned.

In a presentation last week at the Black Hat security conference in Las Vegas, researchers from Context Information Security demonstrated how Windows Update, and particularly WSUS, can be abused in attacks aimed at corporate networks.

WSUS is designed to allow IT administrators to fully manage the distribution of updates to the machines in their organization’s network. WSUS relies on SOAP XML calls to perform updates.

The WSUS configuration wizard in Windows Server 2012 advises users to utilize SSL with the service once the system has been set up. However, since SSL is not enabled by default, experts believe a “significant number” of WSUS deployments don’t use SSL.

Read more...

Da Boss!

Website: www.digitalsmind.com Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Latest Content

  • In Windows 10, you can still give your favorite MS-DOS application a fancy icon
    Written by

    Da Boss!

    In Windows 10, you can still give your favorite MS-DOS application a fancy icon This is actually a pretty cool little trick and I…
    Read more...
  • Microsoft's new Surface Pro - Available for Pre-Order
    Written by

    Da Boss!

    Microsoft's new Surface Pro - Available for Pre-Order I would love to get a Surface Pro but, the…
    Read more...
  • Get Back the WinX power user menu Control Panel Post Creators Udpate
    Written by

    Da Boss!

    Get Back the WinX power user menu Control Panel Post Creators Udpate As MS moves more and more of the old school…
    Read more...
  • Nearly all WannaCry victims were running Windows 7
    Written by

    Da Boss!

    Nearly all WannaCry victims were running Windows 7 Yep... and this will continue until people start to get…
    Read more...
  • New Tool Could Liberate PCs Infected With WannaCry
    Written by

    Da Boss!

    New Tool Could Liberate PCs Infected With WannaCry Huh....well, if you happen to be one of the MANY…
    Read more...

Visit the Digitalsmind Video YouTube Page!

Did you know we have a video page on YouTube? 

Well... WE DO! 

Check us out! 

- Our Video page.