We’re aware of an active ransomware campaign targeting vulnerable networks, including schools. The attack targets open (unsecure) remote desktop protocol (RDP) and virtual private networks (VPN) ports – specifically ports 3389 and 5900. These are protocols used by schools to provide access into the school network while at home. If not set up securely your school may be vulnerable.
Take these steps to secure your network:
- Update all security patches
- Secure your passwords and (where possible) implement two-factor authentication
- Segregate your internal network
More information can be found on CERT NZ’s advisory here. If you have any concerns please reach out to our Helpdesk on 0800 LEARNING, or speak directly to your IT support provider.