Securing your systems for your home workers – guidance for IT and network administrators
If you are thinking about getting your workforce to work and access your Windows systems remotely, it is important to ensure your systems are secure and fully patched to mitigate against any vulnerabilities.
One of the most significant family of vulnerabilities over the past few months relates to issues within RDP (Remote Desktop Protocol). This is the mechanism that allows remote access to your desktops and servers. All versions of Windows are affected in some way.
There are multiple flaws that have been identified over the last few months that allow attackers to bypass authentication amongst other things.
- If you are going to allow access, you MUST ensure these systems are patched
- Do not allow direct RDP access
- Tunnel all RDP connections via secure VPN
- Use an RDP gateway to centrally manage all RDP connections