Microsoft issues second warning about patching BlueKeep as PoC code goes public
For the second time in a very short period, Microsoft has issued a warning urging organizations to install a security patch for the highly critical BlueKeep security flaw that impacts Remote Desktop Protocol (RDP) implementations on older Windows operating systems.
The vulnerability, tracked as CVE-2019-0708, could be used by threat actors to carry out a massive attack involving a worm, i.e. self-replicating malicious code. Unknown actors have been scanning the web in search of devices vulnerable to BlueKeep for over a week, which could mean an attack will be launched soon. To make things worse, limited proof-of-concept code for an exploit of this flaw was published online last week, further increasing worries that an attack might be imminent. While Microsoft previously warned companies to patch the flaw, recent research suggests that close to a million devices remain vulnerable.