Microsoft alerts public to cyber vulnerability in older versions of Windows

May 20, 2019 - 02:58 PM
fda-cybersecurity

Last week, Microsoft released security updates to fix a critical vulnerability in older versions of its Windows operating system, which, the company said, any future malware could exploit remotely as a worm to spread from computer to computer, similar to how the WannaCry malware spread in 2017. The vulnerability also has implications for certain medical devices, which may still be running older versions of Windows. Customers running Windows 8 and 10 are not affected, according to a blog post by the Microsoft Security Response Center. Customers running Windows 7, Windows Server 2008 R2 and Windows Server 2008 with automatic updates enabled are automatically protected, while others running these versions may download the security updates. The company also has released fixes for Windows 2003 and XP, but said the best way to address the vulnerability in these older, unsupported versions is to upgrade to the latest version of Windows. The security patch is the most significant of this type issued by Microsoft since the WannaCry ransomware attacks. 

Related News Articles

Headline
ASPR releases cybersecurity module to conduct risk assessments 
The Administration for Strategic Preparedness and Response has released a new cybersecurity module for organizations to conduct risk assessments. The free…
Perspective
Staying Cyber Alert and Cyber Ready
Public
As the world has learned in recent years, today’s conflicts are fought with many weapons, and cyber warfare is an integral part of the arsenal.As of this…
Headline
FBI reminds of potentially malicious activity by Iranian cyber actors
The FBI is reminding critical infrastructure organizations to implement mitigations from a June 2025 fact sheet on potential actions by Iranian-affiliated…
Headline
CISA report updates findings on RESURGE malware attacks
The Cybersecurity and Infrastructure Security Agency Feb. 26 released a report that updates findings from last year on RESURGE malware used to gain covert…
Headline
Agencies issue guidance on exploitation of Cisco systems by cyber actors 
U.S. and international agencies Feb. 25 released guidance on protecting Cisco Software-defined Wide-area Networking systems from exploitation by malicious…
Headline
NSA issues guidelines on zero trust architecture
The National Security Agency has released two phases of its Zero Trust Implementation Guidelines for organizations to improve their zero trust architecture.…