Ivanti recommendations:
Prioritize updates for the windows operating system to resolve publicly disclosed vulnerabilities and
critical remote code execution vulnerabilities.
The ie and edge browsers have a number of user-targeted, critical vulnerabilities that should also be a
priority.
bluekeep is still a significant threat. Ensure you have applied may or june cumulative updates for the
windows operating systems for xp, windows 7, server 2003, 2008, and 2008 r2.
Rdp in general is a security risk. We recommend all companies evaluate rdp use and mitigate risks.
Public facing rdp services should be behind a vpn, not directly exposed. Use nla where possible.
Configure any credential with rdp access to use strong passwords and change them frequently.
About the author
Chris goettl, is director of product management, security, ivanti. Chris is a
strong industry voice with more than 10 years of experience in supporting,
implementing, and training it admins on how to implement strong patching
processes. He hosts a monthly patch tuesday webinar, blogs on
vulnerability and related software security topics, and his commentary is
often quoted as a security expert in the media.Chris can be reached online at [email protected], on twitter
@chrisgoettl and at ivanti's website: http://www.ivanti.com.