New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research


BlueKeep Vulnerability Said to Still be Affecting Over 805,000 Systems

Since being discovered in May, the number of systems likely to be affected by BlueKeeep has decreased by 17 percent, but more than 805,000 systems are still vulnerable. The BlueKeep flaw (CVE-2019-0708) goes after RDP services of Windows OS’ such as XP, 7, Server 2003 and Server 2008 but does not affect Windows 8 or 10. The Vulnerability can give access to an attacker through a backdoor. BlueKeep can also be used to spread malware inside or outside of networks. Microsoft released a patch on May 14th and has also issued two alerts advising users to implement the patch. A statement was also made by researchers, “As of July 2, 2019, approximately 805,665 systems remain online that are vulnerable to BlueKeep, representing a decrease of 17.18% (167,164 systems) compared to May 31. Part of that reduction is due to 92,082 systems that remain externally exposed that have been since been observed to be patched.”

Analyst Notes

It is highly suggested that users install the patch as soon as possible. If users continue to put it off, they will be very susceptible to malware attacks.