Un-updated systems are at risk
BlueKeep vulnerability (CVE-2019-0708) allows for remote code execution and can be used to spread malware to all affiliates systems. This can be done without any user involvement.
Vulnerable versions are: Windows 7, Windows Server 2008 R2 and Windows Server 2008. The issue is serious enough, which is why Microsoft is constantly alerting users and stressing the need to update the systems.
Cybercriminals often exploit the vulnerability for it mining cryptocurrencies from vulnerable systems.
Check your devices
In the US alone, there are at least 45.000 exposed RDP systems on the Internet. In the South Korea there are more than 20.000 vulnerable systems and 16.000 in Brazil.
These numbers indicate only the vulnerable systems that are directly connected to the public Internet. However, there are many systems that are located in corporate networks and are not visible to everyone. In the event of a BlueKeep epidemic, all systems connected to the network are infected.
The security company ESET has now released a tool that users can use to check if their computer is vulnerable to vulnerability.
If the tool detects a vulnerable system, displays a page that provides the appropriate update version by Microsoft. This version is deployed like any other executable file.
According to ESET: “This is one tool intended for single use and not for mass use in an automated environment ”.
It's not the only BlueKeep scanner on the market. Experts are trying to reduce the chances of such exploitation. On the other hand, hackers are constantly developing their skills and ready to attack any vulnerable system.