Technology
BlueKeep mass attacking vulnerable machines
San Francisco, Nov 4
The "BlueKeep" remote code execution vulnerability, which could have an effect similar to the WannaCry bug from 2017, is currently attacking vulnerable machines that are apparently compromised for cryptocurrency mining purposes, according to media reports.
The BlueKeep vulnerability exists in unpatched versions of Windows Server 2003, Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.
According to security researcher Kevin Beaumont, several honeypots in his EternalPot RDP honeypot network started to crash and reboot.
They've been active for almost half a year and this is the first time they came down. For some reason, the machines in Australia did not crash, the researcher said in a tweet, Bleeping Computer reported on Sunday.
Security researchers, including Beaumont who originally named the vulnerability and Marcus Hutchins, also known as "MalwareTech", who was responsible for hitting the kill switch that stopped the WannaCry bug, have confirmed that a widespread BlueKeep exploit attack is now currently underway.
Hutchins was quoted as saying by the Wired that "BlueKeep has been out there for a while now. But this is the first instance where I've seen it being used on a mass scale."
Interestingly, BlueeKeep has the ability to spread itself from one machine to another, while the attackers are searching for vulnerable unpatched Windows systems that have Remote Desktop Services (RDP) 3389 ports exposed to the Internet.
For now though, this looks like being an attack campaign with a cryptocurrency miner payload, according to Forbes.
The BlueKeep vulnerability exists in unpatched versions of Windows Server 2003, Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.
According to security researcher Kevin Beaumont, several honeypots in his EternalPot RDP honeypot network started to crash and reboot.
They've been active for almost half a year and this is the first time they came down. For some reason, the machines in Australia did not crash, the researcher said in a tweet, Bleeping Computer reported on Sunday.
Security researchers, including Beaumont who originally named the vulnerability and Marcus Hutchins, also known as "MalwareTech", who was responsible for hitting the kill switch that stopped the WannaCry bug, have confirmed that a widespread BlueKeep exploit attack is now currently underway.
Hutchins was quoted as saying by the Wired that "BlueKeep has been out there for a while now. But this is the first instance where I've seen it being used on a mass scale."
Interestingly, BlueeKeep has the ability to spread itself from one machine to another, while the attackers are searching for vulnerable unpatched Windows systems that have Remote Desktop Services (RDP) 3389 ports exposed to the Internet.
For now though, this looks like being an attack campaign with a cryptocurrency miner payload, according to Forbes.
3 hours ago
IPC Houston Fellowship Announces Annual Convention.
5 hours ago
24 News Channel in the forefront to help the revival of Wayanad after landslide tragedy
7 hours ago
Indian Diaspora Excited to Welcome Prime Minister Modi Ahead of U.S. Visit
7 hours ago
Biden Administration Rapidly Allocating Climate Funds as Trump Vows to Cut Them
8 hours ago
Tesla, SpaceX, and X Employees Donate to Harris While Musk Supports Trump
8 hours ago
Biden to Meet Zelenskyy Next Week to Discuss Ukraine War, Says White House
8 hours ago
Woman sentenced to death for blasphemy in Pakistan amid ongoing human rights concerns
8 hours ago
Congress insults India on foreign land, is run by Tukde-Tukde gang, urban naxals": PM Modi
8 hours ago
Hollywood A-listers back Kamala Harris during Oprah show ahead of US polls
8 hours ago
Trump and Republicans Claim Non-Citizen Voting in U.S. Election, Raising Concerns
9 hours ago
Himachal govt to hand over Jangi Thopan Powari hydro project to state power corporation
10 hours ago
Rajasthan govt's amnesty scheme for miners
10 hours ago
India to see 35 lakh weddings from November-mid December, gold demand to surge