{"id":10164,"date":"2024-09-29T07:28:40","date_gmt":"2024-09-29T05:28:40","guid":{"rendered":"https:\/\/aranya.se\/raising-the-bar-on-cybersecurity-one-step-at-a-time\/"},"modified":"2024-09-29T07:28:41","modified_gmt":"2024-09-29T05:28:41","slug":"raising-the-bar-on-cybersecurity-one-step-at-a-time","status":"publish","type":"post","link":"https:\/\/aranya-old.hemsida.eu\/en\/raising-the-bar-on-cybersecurity-one-step-at-a-time\/","title":{"rendered":"Raising the bar on cybersecurity, one step at a time"},"content":{"rendered":"\n
Cybersecurity does not always have to be advanced or difficult.\nIf we take the CVE-2024-38063 vulnerability as an example, it became known just over a month ago, a really nasty security hole in the implementation of IPv6 in Windows.\nIt creates a remote code execution (RCE) vulnerability that allows an attacker to execute arbitrary code on other systems. <\/p>\n\n
This type of security hole reminds me of the motto that you should turn off functionality that is not used.\nIf you are actively using IPv6, it is not a bad idea to continue using NAT.\nIt is therefore important to at least have a firewall in front of the endpoints and only allow traffic that you know you need.\nIt provides protection against quite a lot, if threat actors do not access the machines, similar security holes become more difficult to exploit. RCEs that can be exploited without human error or interaction create the possibility of creating worms, i.e. malicious code that can jump from system to system.\nMicrosoft had a patch out that fixed that before it was used in the wild (as far as we know).\nThis is also why patching systems, as soon as possible, is important.\nIt doesn’t always require the most advanced security features and new products.\nOften, a lot can be done with what is available, and the minimum level can be raised through patching and segmentation.\nTherefore, it is important not to have end of life products in the environment that do not receive new security updates, as an example. <\/p>\n\n<\/figure>\n\n
So some recommendations are to:<\/h5>\n\n
\n
Patch your systems regularly.<\/li>\n\n\n\n
Turn off unused functionality.<\/li>\n\n\n\n
Segment as far as possible (prevent possible spread between segments and reduce attack surfaces).<\/li>\n<\/ul>\n\n
![\"\"](\"https:\/\/aranya-old.hemsida.eu\/wp-content\/uploads\/2021\/02\/FB_Cover_-1024x575.png\")
<\/figure>\n\n![\"\"](\"https:\/\/aranya-old.hemsida.eu\/wp-content\/uploads\/2024\/09\/0I7A0724copy-1024x950.jpg\")
<\/figure>\n\n