The US Cyber ββSecurity Agency (CISA), part of the US Department of Homeland Security, on the successful exploitation of the BlueKeep vulnerability. This flaw allows code to be run remotely on a computer running Windows 2000 through Windows 7, as well as Windows Server 2003 and 2008. The Microsoft Remote Desktop service is used for this.
Π Π°Π½Π΅Π΅ that at least a million devices in the world are still susceptible to malware infection through this vulnerability. At the same time, BlueKeep allows you to infect all PCs within the network, it is enough to do this with only one of them. That is, it works on the principle of a network worm. And CISA specialists were able to take control of a remote computer with Windows 2000 installed.
The department has already called for updating operating systems, since this gap has already been closed in Windows 8 and Windows 10. At the same time, there has not yet been a single case of using BlueKeep. But if this happens, then the story of the 2017 WannaCry virus will repeat itself. Then the ransomware virus hit thousands of computers around the world. Public and private entities in various countries were affected.
We also note that Microsoft previously reported that hackers have exploits for BlueKeep, which theoretically allows them to attack any PC with an outdated version of the operating system. According to digital security specialists, the development of an exploit is not difficult, which was demonstrated in the CISA.
Source: 3dnews.ru