Vulnerabilities in Microsoft Remote Desktop app exploited in data breaches

Several critical vulnerabilities have been discovered in Remote Desktop Services (RDS, Remote Desktop app) in the Microsoft Windows operating system. These 'wormable' vulnerabilities can be exploited by malware to propagate itself from one vulnerable computer to another automatically. The NCSC-FI has received reports about these vulnerabilities being exploited both in Finland and abroad. There are software updates addressing the vulnerabilities and it is critical to install these updates immediately.