<img alt="" src="https://secure.hiss3lark.com/173130.png" style="display:none;">

 

Blog

Read or download all Datashield news, reviews, content, and more.

 

All Posts

Security Advisory Vulnerability CVE-2021-1675

Datashield Security Advisory | Vulnerability CVE-2021-1675

Datashield Security Advisory:

Vulnerability CVE-2021-1675

Released: June 8, 2021 | Last updated: July 2, 2021

Due to the release of a critical Windows vulnerability (CVE-2021-1675) impacting the Windows Print Spooler in conjunction with several recently leaked proof-of-concepts (PoC’s), DataShield recommends applying the available Microsoft patch and disabling the Print Spooler service on all Windows domain controllers.

The “PrintNightmare” vulnerability combined with the available PoC’s allows for remote code execution (RCE) with SYSTEM privileges. While we still recommend applying the available patch as it does mitigate some facets of this vulnerability, however, the patch doesn’t fully mitigate the leaked proof-of-concepts (PoC’s). As a result, we also recommend disabling the Printer Spooler service manually on all Windows domain controllers.

Datashield is also currently creating rules and alerts to detect this exploit and will be deploying detections. Further details from Microsoft on the patch can be found below.

Microsoft Patch Information:


If you have any questions regarding this vulnerability, please contact us below.

Contact Us

Topics from this Article

News, CVE, Threat Intelligence, Threat Analysis

Datashield
Datashield
Official Datashield account for blog content, news, announcements and more. The articles authored include a collaboration between internal staff, specifically the security operations and marketing team.

Related Posts

Lumifi Cyber Acquires Datashield to Deliver Next-Generation Managed Detection and Response

Combines AI and Machine Learning-Based Software with MDR Services to Provide Fortune 500-Grade Security to Companies of All Sizes Palm Desert, CA and Scottsdale, AZ — May 3, 2022 — Lumifi Cyber, Inc., a next-generation managed detection and response (MDR) cybersecurity software provider, today announced its acquisition of Datashield, Inc., an end-to-end cybersecurity resilience services provider, to deliver Fortune 500-grade security to companies of all sizes for an affordable monthly price.

Datashield Becomes Member of Microsoft Intelligent Security Association (MISA)

Datashield Becomes Member of Microsoft Intelligent Security Association (MISA)

The Difference Between Cybersecurity & Network Security

The Difference Between Cybersecurity & Network Security