Technology
BlueKeep mass attacking vulnerable machines
San Francisco, Nov 4
The "BlueKeep" remote code execution vulnerability, which could have an effect similar to the WannaCry bug from 2017, is currently attacking vulnerable machines that are apparently compromised for cryptocurrency mining purposes, according to media reports.
The BlueKeep vulnerability exists in unpatched versions of Windows Server 2003, Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.
According to security researcher Kevin Beaumont, several honeypots in his EternalPot RDP honeypot network started to crash and reboot.
They've been active for almost half a year and this is the first time they came down. For some reason, the machines in Australia did not crash, the researcher said in a tweet, Bleeping Computer reported on Sunday.
Security researchers, including Beaumont who originally named the vulnerability and Marcus Hutchins, also known as "MalwareTech", who was responsible for hitting the kill switch that stopped the WannaCry bug, have confirmed that a widespread BlueKeep exploit attack is now currently underway.
Hutchins was quoted as saying by the Wired that "BlueKeep has been out there for a while now. But this is the first instance where I've seen it being used on a mass scale."
Interestingly, BlueeKeep has the ability to spread itself from one machine to another, while the attackers are searching for vulnerable unpatched Windows systems that have Remote Desktop Services (RDP) 3389 ports exposed to the Internet.
For now though, this looks like being an attack campaign with a cryptocurrency miner payload, according to Forbes.
The BlueKeep vulnerability exists in unpatched versions of Windows Server 2003, Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.
According to security researcher Kevin Beaumont, several honeypots in his EternalPot RDP honeypot network started to crash and reboot.
They've been active for almost half a year and this is the first time they came down. For some reason, the machines in Australia did not crash, the researcher said in a tweet, Bleeping Computer reported on Sunday.
Security researchers, including Beaumont who originally named the vulnerability and Marcus Hutchins, also known as "MalwareTech", who was responsible for hitting the kill switch that stopped the WannaCry bug, have confirmed that a widespread BlueKeep exploit attack is now currently underway.
Hutchins was quoted as saying by the Wired that "BlueKeep has been out there for a while now. But this is the first instance where I've seen it being used on a mass scale."
Interestingly, BlueeKeep has the ability to spread itself from one machine to another, while the attackers are searching for vulnerable unpatched Windows systems that have Remote Desktop Services (RDP) 3389 ports exposed to the Internet.
For now though, this looks like being an attack campaign with a cryptocurrency miner payload, according to Forbes.

6 hours ago
All may soon be well in India-US trade relations

8 hours ago
Israel's PM Netanyahu holds "great" meeting with "friend" US Secretary of State Rubio

8 hours ago
Donald Trump announces deal with China on TikTok

11 hours ago
US Chief Negotiator arriving in New Delhi to resume trade talks, govt set to finalise Export Promotion Mission

11 hours ago
Trump threatens to call national emergency in Washington DC, slams Mayor Bowser

13 hours ago
“Sunny Sanskari Ki Tulsi Kumari” Trailer released - A rollercoaster of laughter & love

13 hours ago
Twinkle Khanna on ‘Two Much with Kajol and Twinkle’: Whoever said yes we got them on our show

13 hours ago
Riddhima Kapoor turns 45, mother Neetu Kapoor shares endearing post

13 hours ago
Neeti Mohan says vocal range offered by ‘Jhamkudi Re Jhamkudi’ sealed the deal for her

13 hours ago
Isha Koppikar croons ‘Chal Kahin Door Nikal Jayen’ as she enjoys Mumbai rains

13 hours ago
77th Primetime Emmys: ‘The Pitt’ scores Outstanding Drama Series

13 hours ago
77th Primetime Emmys: Owen Cooper becomes youngest actor to win Outstanding Supporting Actor

13 hours ago
77th Primetime Emmys: ‘Adolescence’ clinches Outstanding Limited or Anthology Series