Trinity Cyber’s Swift Response to Follina Zero-Day Vulnerability
6/30/22
There are many reasons why the UTS management team selected Trinity Cyber as our partner to help deliver the most advanced cybersecurity system to the U.S. power grid. The speed, accuracy, and effectiveness of their intrusion prevention technology are proven every day as it thwarts cyberattacks that could paralyze our nation’s infrastructure. Their team’s swift response to the Follina zero-day vulnerability demonstrates how Trinity Cyber’s agility, proactive service, and next-generation defensive capabilities assure our customers that their networks are protected.
In April, researchers discovered and reported a zero-day remote code execution vulnerability to Microsoft that allows attackers to gain access to a system by inviting users to download a malicious Word document or other files. Microsoft didn’t consider it a serious security issue at the time, but with 345 million paid commercial seats for Office 365, it had the potential to be devastating.
On May 30, Microsoft issued CVE-2022-30190P acknowledging the Follina zero-day vulnerability in the Microsoft Support Diagnostic Tool (MSDT) in Windows with this warning. “An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the context allowed by the user’s rights.”
Within two hours of learning of this vulnerability, Trinity Cyber had a solution for its customers. On June 14, Microsoft released the long-awaited security update two weeks after issuing a workaround and following repeated attacks by nation-states and other threat actors.
I encourage you to consider your utility’s vulnerability to Follina and the subsequent inevitable cyberattacks specifically targeting our infrastructure. Supplementing your security stack with the Trinity Cyber solution will give you confidence that your utility is defended by the most advanced technology available.
I would be happy to meet with you in person or by Zoom to discuss your cybersecurity needs in more detail.
