Webinar: Learn how to improve WFH security in our Sept. 29 webinar with a former General Electric CIO & an industry analyst Register today

Disabling Cortana to Protect Against Security Threats




Recently, a fairly large security hole has been exposed in Windows 10 systems which allows an attacker to leverage Cortana to run code while not currently logged in to the host. As described by MSPoweruser in this well-documented article, an attacker can leverage Cortana to run PowerShell which can effectively allow the modification of a user account’s password, granting entrance to the attacker even if the system is BitLocker enabled. The only thing the attacker needs is to have physical access to the system.

While Cortana is a useful tool, it is clearly posing a threat to endpoint security with this discovery. IT administrators using JumpCloud can take advantage of our system policies to disable Cortana from use—nearly instantly.

This can be accomplished by simply accessing the “Disable Cortana” Windows policy, enabling it, and binding it to the Group of Systems you wish to disable it for.

disable-cortana-image

Please feel free to contact our Customer Success team with any further inquiries related to enabling system policies or for any guidance you may need while securing your Windows, Mac, and Linux systems at large. You may also see at-a-glance the various policies now supported out of the box. In addition, you may leverage JumpCloud’s Commands feature to execute code (e.g. Powershell) to apply custom policies and settings to systems en masse as well.


Recent Posts
With the major macOS update coming this fall, IT admins need an Apple MDM to manage their Big Sur Macs. You can find one here for free.

Blog

Free Apple MDM

With the major macOS update coming this fall, IT admins need an Apple MDM to manage their Big Sur Macs. You can find one here for free.

Many IT admins signed-up for G Suite and were able to rid themselves of the pain of Microsoft Exchange, but they’re still holding on to AD.

Blog

Using G Suite and Active Directory? There’s a better way.

Many IT admins signed-up for G Suite and were able to rid themselves of the pain of Microsoft Exchange, but they’re still holding on to AD.

IT Manager Justin Price joined a recent JumpCloud Office Hours panel to share his journey to implement his company’s first directory platform.

Blog

Office Hours Recap: Talking Favorite Features and More With Justin Price

IT Manager Justin Price joined a recent JumpCloud Office Hours panel to share his journey to implement his company’s first directory platform.