ISLAND businesses are being urged to avoid relying on old systems – potentially leaving themselves open to a new type of digital attack that exploits a vulnerability in Microsoft software.
The Jersey Cyber Security Centre said that the vulnerability, known as “ToolShell”, has been exploited across the globe, with the majority of successful attacks taking place in the United States (31%), followed by Mauritius (8%), Germany (7%) and France (5%).
It affects businesses using self-hosted versions of Microsoft SharePoint, by combining two security flaws that – when exploited together – allow attackers to gain
unauthorised access to an organisation’s network.
This can result in stolen data and damaged systems, while also enabling ransomware attacks, which usually involve an attacker preventing its target from accessing its own digital information before offering to return it at a cost.
The JCSC revealed that it had contacted five local organisations, which took remedial action – including shutting down key systems in some cases – after they were identified as being “highly vulnerable”.
JCSC director Matt Palmer explained that the affected organisations were running outdated software.
“No one wants to pull the plug on critical services during an emergency – but that’s the risk when relying on these old systems,” he continued.
“Microsoft issued a patch for ToolShell, but these patches aren’t available for older,
unsupported systems.”
The JCSC is recommending that all organisations develop a “clear plan” for applying security updates and install them within 14 days of release, while those managing their own servers should also isolate or disconnect any out of support systems that cannot be patched.
Mr Palmer added: “It’s great that organisations took prompt action in this case. However cyber criminals are always adapting.
“We want to give Islanders the best possible chance of staying secure. I urge
any organisation – large or small – to contact JCSC for confidential advice.”
