A Note From the Help Desk: CU*Answers Network Services Response to Significant Microsoft Vulnerabilities

CU*Answers Network Services has been tracking two significant Microsoft vulnerabilities published yesterday and how to remediate them. Due to the scope and severity of the issues, the US government has taken the rare step of also publishing alerts for these vulnerabilities through US-CERT and the Department of Homeland Security.

About the Vulnerabilities:

  • The first vulnerability is related to how Microsoft Windows operating systems validate trust for certain operations related to encrypted connections or software installation. The vulnerability could allow built-in security protections to be bypassed or tricked by malicious actors. Microsoft has released updates to address this vulnerability.
  • The second affects Microsoft’s Remote Desktop software on Windows PCs as well as their Remote Desktop Gateway Server for Windows servers. Successful attacks against this Microsoft software could allow for arbitrary code execution. Microsoft has also released updates to address this vulnerability.

What is CU*Answers Network Services Doing?

Complete Care clients managed by CU*Answers Network Services should have already received our monthly patching notification that we will be applying updates to your network this week. These updates include fixes for these two vulnerabilities. Complete Care clients need to take no additional steps as they will get the updates automatically. As always, please continue to monitor your Monthly Patching Reports to ensure your network is fully up to date.

Non Complete Care clients should contact their network administrator or contact Network Services for a Complete Care proposal.

If you have questions, please contact the Network Services Help Desk at extension 266.

A Note from Network Services: MPLS Data Line Price Increases

A Note from Network Services: MPLS Data Line Price Increases

Notice of MPLS Data Line Price Increases Many credit unions use MPLS lines to connect to CU*Answers for their data processing.  CU*Answers has been notified by Lumen (formerly CenturyLink), the provider of our MPLS data network, that they will be passing along price increases on data lines that they receive from third party “last mile”… Read more »

Jun 7, 2022

A Note from Network Services: Netwrix Auditor Vulnerabilities

A Note from Network Services: Netwrix Auditor Vulnerabilities

Netwrix has disclosed vulnerabilities to Netwrix Auditor and has released an updated version, version 10.5, to resolve these vulnerabilities.  We urge clients using this platform to review their Netwrix Auditor version information and update to version 10.5 as soon as possible.  Netwrix has indicated that there is no evidence that these vulnerabilities were disclosed to… Read more »

Jun 7, 2022

A Note From the Help Desk: Microsoft Windows Support Diagnostic Tool Vulnerability

A Note From the Help Desk: Microsoft Windows Support Diagnostic Tool Vulnerability

ATTENTION ONLINE AND SELF-PROCESSING CREDIT UNIONS Microsoft Windows Support Diagnostic Tool Vulnerability What Is It? CU*Answers Network Services is tracking a recently announced security vulnerability when the Microsoft Windows Support Diagnostic tool is used to execute arbitrary code with the privileges from another application such as Microsoft Word. How Does It Work? The primary method… Read more »

Jun 2, 2022

Reminder: Partnership Changes Coming to Managed Technology Services

Reminder: Partnership Changes Coming to Managed Technology Services

THIS POST APPLIES TO CREDIT UNIONS WHO RECEIVED THE ASSOCIATED EMAIL. Dear clients – for the past several years we have worked closely with CU*Northwest to deliver leading-edge managed technology services to their credit union community.  Through this partnership, you have been able to leverage the proven technology management practices of CU*Answers Network Services (CNS)… Read more »

Apr 20, 2022

AdvantageCIO acquires certified information systems auditor

AdvantageCIO, a division of CU*Answers, is pleased to announce it has acquired a Certified Information Systems Auditor (CISA) to perform various assessments for cybersecurity. Andrew Hinson has passed the exam and achieved the certified status for ISACA’s CISA program. The CISA certification is world-renowned as the standard of achievement for those who audit, control, monitor […]

Apr 6, 2022

Have a question for CU*Answers? Who do you call?

Have a question for CU*Answers?  Who do you call?

At CU*Answers, we know how important it is that your Credit Union gets the appropriate help in order to meet your day-to-day data processing needs.  When you don’t know exactly who to call, we recommend that you get started by reaching out to either the Client Services and Education Team or the Network Services Team…. Read more »

Apr 4, 2022

Partnership Changes Coming to Managed Technology Services

Partnership Changes Coming to Managed Technology Services

THIS POST APPLIES TO CREDIT UNIONS WHO RECEIVED THE ASSOCIATED EMAIL. Dear clients – for the past several years we have worked closely with CU*Northwest to deliver leading-edge managed technology services to their credit union community.  Through this partnership, you have been able to leverage the proven technology management practices of CU*Answers Network Services (CNS)… Read more »

Mar 31, 2022

A Note from Network Services: Extended Lead Times on Hardware Orders

A Note from Network Services: Extended Lead Times on Hardware Orders

Extended hardware lead times are affecting nearly all hardware orders.  Do not delay ordering equipment for your network projects. CU*Answers Network Services is advising clients to not delay placing equipment orders for their upcoming projects. Vendors and manufacturers are experiencing extreme supply chain delays and volatility across all product categories that are pushing delivery times… Read more »

Mar 28, 2022

Partnership Changes Coming to Managed Technology Services

Partnership Changes Coming to Managed Technology Services

THIS POST APPLIES TO CREDIT UNIONS WHO RECEIVED THE ASSOCIATED EMAIL. Dear clients – for the past several years we have worked closely with CU*Northwest to deliver leading-edge managed technology services to their credit union community.  Through this partnership, you have been able to leverage the proven technology management practices of CU*Answers Network Services (CNS)… Read more »

Mar 1, 2022