Breaking News: BlueKeep Worm Poses A Threat to Microsoft Users

Table of Contents

On Monday, June 17th, the Cybersecurity and Infrastructure Security Agency (CISA), a sub agency of the Department of Homeland Security, released a critical warning targeted towards Microsoft Windows users. This alert, which is only the third alert to be issued by the CISA in 2019, warns users of a potential malware threat, referred to as BlueKeep.  


BlueKeep, also known as CVE-2019-0708, is a computer worm that was discovered in May 2019. Its origins are either unknown or have yet to be publicly released. However, the situation mirrors the WannaCry attacks that occurred in mid-May 2017, which have since been linked to North Korea.

 

Breaking News Blog Graphic02

 

Although the word “virus” is often used an all-encompassing term for malware, computer worms are equally, if not more, dangerous. A worm does not attach itself to a specific location or file, but instead, it enters many computers through a vulnerability on a shared network or operating system.

 

Unlike viruses, worms do not require human initiation to infect a device. Because of this, worms have the ability to replicate themselves and quickly spread to other computers. In the case of the BlueKeep worm, which affects international Microsoft systems, this worm has the potential to disrupt users worldwide.

Breaking News Pull Out Quote

 

According to the CISA alert, the BlueKeep worm has the potential ability to take control of an infected system by sending “specially crafted packets” to one of the previously listed operating systems. After successfully sending the packets, the worm would have the capacity to add “accounts with full user rights,” edit or delete data, and install programs.

 

If left untreated, we expect the attackers to begin exploiting the hacked data within the next few weeks. Luckily, Microsoft has issued a patch, that if installed, should protect systems from being infected. However, if left unpatched, upwards of a million machines are left vulnerable to the BlueKeep worm.

 

Unfortunately, the threat does not stop there. BlueKeep’s wormlike traits enable it to replicate itself and slither onto other devices via internal networks. A BlueKeep attack could use older Windows systems as a gateway to infiltrate many more computers. A breach of this scale would cause global devastation, similar to the WannaCry crisis.

 

To protect your business, it is imperative that you install the Microsoft patches. You can also protect your business by properly configuring your Remote Desktop Protocol by avoiding access to public internet, or disabling your RDP until the patches are installed.

Categories: Security, cyber security, Network Security

blogs related to this

Malware and Ransomware Protection for Internet of Things (IoT) Devices

Malware and Ransomware Protection for Internet of Things (IoT) Devices

Malware has been around for quite a few years, and it continues to bring businesses down to their knees. Ransomware, in particular, was a nuisance...

Printer Security Risks and How to Mitigate Them

Printer Security Risks and How to Mitigate Them

Printers may appear to be low-maintenance and relatively safe devices. However, printers are a common attack vector used by cybercriminals to gain...

Managed IT Services vs In-House IT: Which is Right for Your Business?

Managed IT Services vs In-House IT: Which is Right for Your Business?

Information Technology (IT) is the most important pillar in an organization's architecture. The quality of an enterprise's IT ecosystem will largely...

DNS Hijacking: What it is and How to Protect Your Business

DNS Hijacking: What it is and How to Protect Your Business

A Domain Name System (DNS) is essential to all companies that depend on the internet to generate sales—it is a crucial element to the performance and...

Can Your Business Recover Data after a Ransomware Attack?

Can Your Business Recover Data after a Ransomware Attack?

In a highly digitized world, businesses face an increasingly sophisticated range of cybersecurity threats. As such, it's safe to say that ransomware...

What is Threat Intelligence Sharing?

What is Threat Intelligence Sharing?

The world is rife with cybercrime. Enterprises constantly battle an evolving array of threat actors to protect massive digital vaults of sensitive...

Optimizing Your Print Environment with a Professional Print Assessment and Analysis

Optimizing Your Print Environment with a Professional Print Assessment and Analysis

How many pages does your company print each week? What are your current print costs? What's the total cost of ownership? Are your reactive processes...