Let’s bust the PrintNightmare bug once and for all

The PrintNightmare vulnerability has been affecting Windows users for months. Despite multiple attempts at patches, problems are still persisting. Understandably, the debacle has concerned the cyber community.

What is PrintNightmare?

PrintNightmare is a vulnerability that affects the Microsoft Windows Print Spooler Service. The ‘Print Spooler’ is enabled by default in all Windows clients and servers. The service manages print jobs by loading printer drivers, receiving print files, queuing/ scheduling them, and more.

The printing issue came about in June as a result of the Windows ‘KB5004945’ updates which affects virtually all versions of Windows systems. Microsoft is now urging people to uninstall the update as soon as possible.

The vulnerability has become a primary target for ransomware groups, as it allows them to gain total control over an affected system. All they need to do is is find a compromised workstation to gain access to the whole network. By abusing system privileges, they can install programs; view, alter, or delete data; or create new accounts with full user rights.

In July, Microsoft released an emergency patch to address the vulnerability but it was subsequently bypassed. The patch only addressed the RCE component, which meant that an attacker could still escalate regular user privileges to gain system-level privileges.

How PenTera can help

PenTera is a fully automated platform that requires no prior knowledge of the IT environment in question. The solution can see what nobody else can, providing instant discovery and exposure validation across the entire IT infrastructure.

With the latest version of PenTera v4.5.5, the PrintNightmare vulnerability can now be identified. What’s more, it exposes, exploits, prioritises and remediates PrintNightmare, as well as pinpointing all the possible attack paths a hacker may take to compromise your organisation.

PenTera is the only Penetration Testing tool that can do all of this automatically, without any agent, with a completely safe-by-design approach. Thanks to constant updates, it protects against the most up to date threats and attacker techniques.

Ready to adopt a more proactive approach to your cybersecurity?

To learn more about Pentera, check out our latest podcast episode here.

The Core of IT V4

The Cyber Games: May Cyber Security Be Ever in Your Favour

Welcome, esteemed tributes of the corporate arena, to the Cyber Games of Black Friday! As you embark on this perilous journey into the digital realm, may the firewalls be ever in your favour. In the bustling districts of commerce, Black Friday is our Capitol, a grand...

Business & Innovation Mag: Battle test your cyber skills at Core to Cloud event: Register your free place – Robots: Because cybersecurity is not dangerous enough – 16th June

Phil Howe, Chief Technical Officer at Core to Cloud, discusses the upcoming Robots event on 16th June 2022 in Cirencester, which challenges participants to test their cyber security knowledge and skills should they ever face a real cyber-attack.

Trusted by over 150 organisations

Share This