de | English
IT Security Nov 4, 2019

"Bluekeep": Attack detected. Patch now!

The Bluekeep security vulnerability (CVE-2019-0708) in Microsoft’s Remote Desktop Protocol (RDP) was first reported in May and since then, the necessary security updates have been available. If you haven’t installed these yet, now is the time to act as attacks have been uncovered.

Share article

Security experts at Kryptos Logic are reporting that they have spotted attacks on their honeypots— systems used as traps to document and study attacks

 

Analyses have shown which malware attackers are trying to install on Windows PCs, with VirusTotal reporting that a Monero-miner is currently being used that will affect the victim’s compute power.

 

As previously recommended, systems that can be accessed externally via RDP should be patched as a matter urgency. Companies should also consider the question of whether external access is actually necessary and to update Windows 7, Windows Server 2008 and 2008 R2 to the latest versions as support for these operating systems will be coming to an end in January 2020.

Patrick Pötz
Security Consultant