[et_pb_section fb_built=”1″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_row _builder_version=”4.9.4″ _module_preset=”default”][et_pb_column type=”4_4″ _builder_version=”4.9.4″ _module_preset=”default”][et_pb_text _builder_version=”4.9.4″ _module_preset=”default”]<\/p>\n
Today’s news is full of stories about increased cyber-threats in NZ – Cyber attacks against Kiwibank, ANZ, NZ Post, MetService – experts see lockdown link – NZ Herald<\/a><\/span><\/p>\n We’ve seen several days of issues caused by these “DDOS” attacks.<\/p>\n <\/p>\n It is a zero day<\/a> exploit of Microsoft MSHTML Remote Code Execution Vulnerability.\u00a0<\/span><\/p>\n This <\/span>is in the cyber security news because the exploit has a CVSS (Common Vulnerability Scoring System) of 8.8 out of 10 and impacts almost every Windows desktop, laptop and server.<\/strong><\/span><\/p>\n As with all security alerts, this is an evolving situation.<\/span><\/p>\n The exploit is active, hackers are using it right now<\/strong> to gain access to systems.<\/span><\/p>\n The news mentions Internet Explorer.\u00a0 You may think that because you use Edge or Chrome, you are not at risk.\u00a0 Unfortunately, that’s not true. Internet Explorer is still installed on almost every Windows device and hackers can exploit that.\u00a0 That’s even if you don’t actively use it.<\/span><\/p>\n Microsoft\u2019s official workaround at this stage is to disable the installation of new Active X controls.\u00a0 This has a risk for some businesses which use applications that rely on these controls.\u00a0 <\/span><\/p>\n It is reported that delivery of the hack is through documents from the web.\u00a0 Infected documents have this malicious content hidden in them.\u00a0 \u00a0The good news is that the default setting in Word is to disable this content for any documents opened from a web location.\u00a0 This is typically shown as the Enable Editing button on web documents.\u00a0 <\/span><\/p>\n [\/et_pb_text][et_pb_image src=”http:\/\/kinetics.co.nz\/wp-content\/uploads\/2021\/09\/IEACTX.png” title_text=”IEACTX” _builder_version=”4.9.4″ _module_preset=”default”][\/et_pb_image][et_pb_text _builder_version=”4.9.4″ _module_preset=”default”]<\/p>\n Awareness is also a key tool in prevention.\u00a0 Please remind all your staff of the dangers around documents.<\/strong><\/span><\/p>\n Don’t panic if you have Kinetics for KARE Security: Our Kinetics KARE for Security Clients<\/a> already have these layers of protection, and KARE for Security S2<\/a> clients also have advanced EDR on all covered devices.<\/strong><\/p>\n We expect that Microsoft will release an update to resolve the issue.\u00a0 In the meantime, everyone needs to take care accessing documents from emails and web sites – even more so than usual.<\/span><\/p>\n If you wish to follow Microsoft advice of disabling Active X<\/strong>, then Kinetics can use KARE to implement this on all devices for all devices covered under your agreement.\u00a0 \u00a0This is chargeable for <\/span>our Ready Reaction and Core Fundamental clients. <\/span><\/p>\n We recommend this as a temporary \u00a0change as some line of business application make use of these controls.\u00a0\u00a0\u00a0 Kinetics is offering to deploy the Active X block across all end user devices and Remote Desktop Servers, then remove it once a fix is deployed at a fixed fee of $299+GST<\/strong>.\u00a0 This does not include any remediation if issues arise from any software like Line-Of-Business\u00a0applications.\u00a0 If you wish to use this, please contact your account manager.<\/span><\/p>\n [\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":" Today’s news is full of stories about increased cyber-threats in NZ – Cyber attacks against Kiwibank, ANZ, NZ Post, MetService – experts see lockdown link – NZ Herald We’ve seen several days of issues caused by these “DDOS” attacks. Overnight, another cyber-threat snuck through It is a zero day exploit of Microsoft MSHTML Remote […]<\/p>\n","protected":false},"author":5,"featured_media":7253,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[4,5],"tags":[],"class_list":["post-7836","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-security"],"_links":{"self":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/7836","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7836"}],"version-history":[{"count":0,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/wp\/v2\/posts\/7836\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=\/"}],"wp:attachment":[{"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7836"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7836"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/new.kinetics.co.nz\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7836"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Overnight, another cyber-threat snuck through<\/h2>\n
Here are some things you need to know, as we currently understand them to be.<\/span><\/h3>\n
You are least at risk if you have :<\/span><\/h2>\n
\n