2021-07-06: Fix for PrintNightmare exploit until a patch is available
From Microsoft’s Windows Print Spooler Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
This attack can be mitigated by changing security permissions for system folders as documented in this Fix for PrintNightmare CVE-2021-34527 exploit to keep your Print Servers running while a patch is not available article from Truesec.
Have your systems been patched?
All of our clients with Managed IT Services contracts have already had their systems patched. Is your current IT provider taking the necessary and proactive steps to keep your business safe? If you have doubts, it may be time to have a conversation about how to better manage your IT assets.