BlueKeep, a critical remote code execution vulnerability spotted in the wild

4th November 2019 | By Mouseworld Now Correspondent |

 

New Delhi, November 4, 2019: Security researchers Kevin Beaumont (@GossiTheDog) and Marcus Hutchins (@MalwareTechBlog) have confirmed the first in-the-wild exploitation of CVE-2019-0708, which is also known as BlueKeep.

CVE-2019-0708, a critical remote code execution vulnerability in Microsoft’s Remote Desktop Services, was patched back in May 2019. Beaumont subsequently setup BlueKeep honeypots to keep tabs on global in-the-wild exploitation attempts of the flaw. Honeypots are bait machines used by security researchers to catch exploit attempts. Over the weekend, Beaumont observed blue screens of death (BSODs) for his BlueKeep honeypots on November 2. Hutchins shared his analysis in a blog post, where he identified the attackers were utilizing a recently released exploit module to install a cryptocurrency miner, detected by 44% scanners on VirusTotal as of November 3.

“This is the first example of attackers exploiting the BlueKeep vulnerability in the wild which should set alarm bells off for organizations that have yet to patch vulnerable systems,” said Satnam Narang, Senior Research Engineer, Security Response at Tenable.

“According to BinaryEdge, there are over 700,000 vulnerable systems that are publicly accessible, including over 8,000 in India. The risks here cannot be overstated – organizations must patch their systems immediately,” Narang added.

Tags: , , , , ,

Leave your comment

IMPORTANT! To be able to proceed, you need to solve the following simple math

What is 15 + 14 ?
Please leave these two fields as-is:

Mouseworldnow Videos
  • r chandrashekhar president nasscom
  • Anant Maheshwari, President, Microsoft India
  • Suresh_Vaswani-220 by 220

Channel News

  • MG Motor Opens its first digital car-less showroom, MG Digital Studio more...
  • Globus Infocom to Participate in InfoComm India 2019 Expo more...
  • ASUS Opens New ASUS Exclusive Store in B’lore more...
  • COMPUTEX 2019 Successfully Comes to a Close at Taipei more...
  • MyGate ‘Silences’ Deliveries To Gated Communities For Seamless Customer Experience more...
dell for SMEs
Subscribe via email

Enter your email address:

Keysight
QUESTION HOUR
What does the mouse ask?

Will the spurt in online video advertisement steal the twinkle from the TV ad platform?

View Results

Loading ... Loading ...
Newsletter Registration