MCP Insights

    Subscribe to Newsletter

    Recent Posts

    Cybersecurity Threat Advisory: 'PrintNightmare' Zero-Day Vulnerability in Windows Print Spooler

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new alert that requires the mission-critical community’s immediate attention.

    Advisory Overview

    Last week, security researchers mistakenly published proof-of-concept (PoC) exploit code, which has since been dubbed “PrintNightmare.” The vulnerability exploits a critical flaw in Microsoft’s print spooler service. Microsoft has issued out-of-band security updates to address the flaw and has rated it as critical as attackers can remotely execute code with system-level privileges on affected machines.

    Topics: Cybersecurity

    Cybersecurity Threat Advisory: Nobelium Spear Phishing Activity

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    Topics: Cybersecurity, Law Enforcement, Criminal Justice, 911 and Emergency Communications Centers, Fire and EMS, Healthcare

    Endpoint Protection is MCP's Latest Weapon in the Battle Against Cyberattacks

    Network and system endpoints, i.e., workstations and servers, are the most vulnerable network and system elements because they directly interface with the applications that we use. Those applications act as gateways into those endpoints and thus are used by cyberattackers to deliver the malware that will enable them to carry out their nefarious missions. This is especially true of ransomware, which targets files and data that are accessible on or from those endpoints. The cyberattacker’s goal is to gain access and control of as many endpoints as possible.

    Topics: Cybersecurity, Network Management, IT and Network Support

    Cybersecurity Threat Advisory: Microsoft Patch Tuesday – May 2021

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new critical alert that requires the mission-critical community’s immediate attention.

    Advisory overview

    Microsoft’s Patch Tuesday release for May 2021 includes a Windows update that will remediate a multitude of vulnerabilities. The update will patch 55 vulnerabilities; one is critical, 50 are important, and one is moderate. It also includes patches for three zero-day vulnerabilities that are identified below. MCP recommends updating all Windows machines to apply these patches and remediate the vulnerabilities.

    Topics: Cybersecurity, Network Management, IT and Network Support

    Cybersecurity Threat Advisory: Leaked Windows RDP Credentials

    Posted by Mike Beagles

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new critical alert that requires the mission-critical community’s immediate attention.

    Advisory overview

    Hacker group UAS recently had 1.3 million Remote Desktop Protocol (RDP) credentials, i.e., usernames and passwords, for Windows servers leaked by security researchers. The compromised credentials could allow a cyberattacker to log into a compromised RDP server. It is imperative to apply best security practices when handling Windows RDP servers, to prevent cyberattackers from accessing confidential information and granting more insight into a network. Such practices include a strong password policy and ensuring that RDP in not open to the internet.

    Topics: Cybersecurity, IT and Network Support

    MCP Launches Video Chats to Keep Clients Current on Cybersecurity Threats

    Cybersecurity threats and issues are increasing and evolving continuously, seemingly at warp speed. It is difficult to keep up with it all—but it is imperative that every organization does everything possible to protect its networks, systems and devices from cyberattacks. This is especially true of organizations that provide mission-critical, life-saving services, e.g., law enforcement agencies, fire/rescue departments, emergency medical services agencies and emergency communications centers, aka 911 centers.

    Topics: Company News, Network Management

    Cybersecurity Threat Advisory: FortiOS Vulnerabilities

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    Topics: Next Generation 911 Networks, Cybersecurity, Network Management, IT and Network Support, 911 and Emergency Communications Centers

    Cybersecurity Threat Advisory: Critical Microsoft Exchange Server Vulnerabilities

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new critical alert that requires the mission-critical community’s immediate attention.

    Advisory overview

    Microsoft released several security updates due to targeted attacks against vulnerabilities found in Microsoft Exchange Server (versions 2013, 2016, and 2019). Though the attacks appear to be limited, Microsoft is urging the immediate updating of all affected systems to mitigate the vulnerabilities and further abuse within networking environments where Exchange servers are being used. Microsoft attributes the activity to a cyberattack group known as “Hafnium.”

    Topics: Cybersecurity, Network Management, IT and Network Support, Law Enforcement, Criminal Justice, Fire and EMS

    Cybersecurity Threat Advisory: Critical VMware Vulnerabilities

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    Topics: Cybersecurity, IT and Network Support

    Cybersecurity Threat Advisory: Apple iOS Zero-Day Vulnerabilities Exploited in Wild

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new critical alert that requires the mission-critical community’s immediate attention.

    Advisory Overview

    Apple announced that it has learned of three zero-day vulnerabilities affecting its iOS (formerly iPhone operating system). One of the vulnerabilities (CVE-2021-1782) affects the system kernel, allowing for privilege escalation; the other two (CVE-2021-1870, CVE-2021-1871) are present within the system’s WebKit Safari browser, allowing for remote code execution (RCE). According to Apple, all vulnerabilities have been patched in iOS 14.4.

    Topics: Cybersecurity, Network Management

    Cybersecurity Threat Advisory: Threat Actors Abusing Windows RDP Servers

    As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.

    This week there is a new critical alert that requires the mission-critical community’s immediate attention.

    Advisory Overview

    The Remote Desktop Protocol (RDP) service for Microsoft Windows devices operating on User Datagram Protocol (UDP) port 3389 can be used in an amplified attack, potentially resulting a distributed denial of service (DDoS) attack on a target. A system that is involved in, or is the target of, such an attack could experience partial or total degradation in usability. It is recommended that RDP services be available exclusively via virtual private network (VPN) services. If that is impossible, then RDP via UDP port 3389 should be blocked.

    Topics: Cybersecurity, Network Management, IT and Network Support

    The Seven Best Cybersecurity Resolutions for the New Year

    Cybersecurity continues to be a persistent problem for government agencies, including those operating in the public safety and justice sectors. These entities must be constantly vigilant in their efforts to prevent breaches, a task made incredibly difficult given the ingenuity of cyberattackers, the fact that the number of attacks continues to increase at a dizzying pace, and the reality that attack vectors evolve seemingly by the hour. Nevertheless, while fighting the battle isn’t easy, it is essential.

    Topics: Operations, Wireless & Broadband, Cybersecurity, Network Management, IT and Network Support, Law Enforcement, Criminal Justice, 911 and Emergency Communications Centers, Healthcare

    All posts
    Icon

    Let's Talk

    How can we support your mission? From design and procurement to building and management, our national team of experts is here to help…because the mission matters.

    Get In Touch

    Mission Critical Partners

    A: 690 Grays Woods Blvd., Port Matilda, PA 16870
    P: 888.862.7911

    twitter-x-footer facebook_icon linkedin_icon

    Newsletter

    Click the button below to sign up for our newsletter.

    SIGN UP
    Navigation

    ©2024 All Rights Reserved

    NENA 911   APCO International   iCERT

    Privacy Policy  |  Terms & Conditions