City
Epaper

BlueKeep mass attacking vulnerable machines: Report

By IANS | Published: November 04, 2019 3:40 PM

The "BlueKeep" remote code execution vulnerability, which could have an effect similar to the WannaCry bug from 2017, is currently attacking vulnerable machines that are apparently compromised for cryptocurrency mining purposes, according to media reports.

Open in App

The BlueKeep vulnerability exists in unpatched versions of Windows Server 2003, Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.

According to security researcher Kevin Beaumont, several honeypots in his EternalPot RDP honeypot network started to crash and reboot.

They've been active for almost half a year and this is the first time they came down. For some reason, the machines in Australia did not crash, the researcher said in a tweet, Bleeping Computer reported on Sunday.

Security researchers, including Beaumont who originally named the vulnerability and Marcus Hutchins, also known as "MalwareTech", who was responsible for hitting the kill switch that stopped the WannaCry bug, have confirmed that a widespread BlueKeep exploit attack is now currently underway.

Hutchins was quoted as saying by the Wired that "BlueKeep has been out there for a while now. But this is the first instance where I've seen it being used on a mass scale."

Interestingly, BlueeKeep has the ability to spread itself from one machine to another, while the attackers are searching for vulnerable unpatched Windows systems that have Remote Desktop Services (RDP) 3389 ports exposed to the Internet.

For now though, this looks like being an attack campaign with a cryptocurrency miner payload, according to Forbes.

( With inputs from IANS )

Tags: Marcus HutchinsRDPBeaumont
Open in App

Related Stories

CricketHeather Knight's captain knock guides England to keep Ashes 2023 alive

CricketWanindu Hasaranga, Ashleigh Gardner voted ICC Players of the Month for June

CricketWomen's Ashes: Tammy Beaumont, Lauren Filer called up to England’s squad for ODIs against Australia

CricketWomen's Ashes: All to play for on Day 5 after Australia, England's engaging battle on Day 4

CricketWomen's Ashes: Three quick jolts to Australia keep hopes alive for England, Aussies lead by 167 runs (Day 4, Lunch)

टेकमेनिया Realted Stories

TechnologyNot just Tesla, we're expecting good response from several EV makers: DPIIT Secy

TechnologyHumans not at risk of deadly chronic wasting disease: Study

TechnologyAWS, Microsoft Azure, Google Cloud now dominate 66 per cent of global Cloud spending

TechnologyWhy congenital heart disease remains a health concern in India

TechnologyDigital Competition Bill: Strengthen existing regulatory bodies like CCI, NCLAT, says Nasscom