PrintNightmare CVE-2021-34527

Update Now & Reboot Windows 10

There is a new active exploit ruining the Internet for everyone using Windows.  These instructions are for Windows 10 Pro, but similar enough to all versions of MS Windows.
The short read:  Install Windows Updates and Restart Now
The rest:

 

What is it?

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Microsoft

Why should I care?

This exploit can easily be used as a point of entry for lateral network movement causing  unchecked privilege elevation on business domains.

What should I do?

Install all Windows updates.  Then Restart your PC.

1. Start > Settings > Update & Security > Windows Update

2 Click “Install” & “Restart Now”
3 Continue to open Settings > Windows Update until you Click the “Check for Updates” button and install everything until it says “You’re Up to Date”

4 If there is a “Feature Update”, click “Download and Install Now”  Restart when complete

 

Microsoft patched CVE-2021-34527 on 7/1/21 and updated KB5004945 for Windows 10 on 7/8/21.

Also, you may check Installed Updates for KB5004945 listed to fix PrintNightmare.

1 Start > search “Control Panel”

2 Programs > Uninstall a Program

3 View Installed Updates

4 Search Installed Updates for KB5004945

To read more information about PrintNightmare and Exploitation of Remote Services:

https://attack.mitre.org/techniques/T1210/

https://www.digitaltrends.com/computing/how-to-fix-print-nightmare-on-windows-right-now/

 

 

0

Zoom + Logitech Rally

Turn TV on to HDMI 1

HDMI to USB C and USB 3

1. Connect USB Type A plug from Logitech Rally lead from table to your Surface Pro 7
2. Connect HDMI1 to USB C Adapter (Surface Pro 5 uses MiniDP)
3. Zoom Audio Settings
a. Select a Microphone: Echo Cancelling Speakerphone (Logi Rally Audio)
b. Select a Speaker: Echo Cancelling Speakerphone (Logi Rally Audio)
4. Zoom Video Settings
a. Select a Camera: Logi Rally Camera
b. Select a Virtual Background: QR code Mallor | Grodner
5. Microsoft Teams
a. Start an empty meeting (optional after 1st time)
b. Settings > Computer Audio > Device Settings
i. Audio Devices: Logi Rally Audio
ii. Speaker: Echo Cancelling Speakerphone (Logi Rally Audio)
iii. Microphone: Echo Cancelling Speakerphone (Logi Rally Audio)
iv. Camera: Logi Rally Camera

Rally Remote

Logi Rally Remote

MAKE RALLY THE DEFAULT DEVICE

Ensure that Logi Rally Camera is chosen as the camera, speaker and microphone in your video conferencing applications. Please consult the application documentation for further instructions on how to do this.

STARTING A VIDEO CALL

After installing Logi Rally and ensuring it is the default device in your video conferencing application, simply start the application in the normal manner and enjoy the benefits of improved audio and video.

PAIRING RALLY TO A BLUETOOTH DEVICE

You can use Logi Rally for audio calls when paired to a Bluetooth device
To pair your Bluetooth device to “Logitech Rally”, follow these simple
steps:
1. Press and hold the Bluetooth button on the remote control until you see a flashing blue light on the camera and microphones
2. Place your mobile device in Bluetooth pairing mode and select “Logitech Rally”
3. You are now ready to use “Logitech Rally” for audio calls

0