Help Centre Forum

TOTECS Forums

What should we do to protect ourselves from what could be the next major ransomware threat - BlueKeep?
Author
Thread

Author Darren Smith
9th July 2019
A trusted source, sent me the following info and thought it worthy of passing it on to you.

Just wanted to give you a heads up you on what is expected to develop into a major ransomware threat that you may want to push out to the guys.
Threat name is BlueKeep, it was identified by the UK Cyber Security Centre late last month and relates to a vulnerability in Microsoft Remote Desktop Protocol.
Although there are no reported attacks using this security vulnerability yet, various security organisations have created proof of concept code for self propagating worms, so you can bet that someone out there is working on a malicious version.
The vulnerability is pre user authentication and requires no user interaction.
Microsoft are aware and have issued patches so updating machines and servers is a must.
OS's affected are all desktop clients pre Windows 10 (MS have even released patches for XP and 7 which are out of support) and MS Windows Server 2012.
Further details: https://www.zdnet.com/article/bluekeep-researchers-show-how-dangerous-this-windows-exploit-could-really-be/

TOTECS - Ecommerce Services Coordinator