About this tag
BlueKeep (CVE-2019-0708) is a critical, wormable remote code execution vulnerability in Microsoft's Remote Desktop Services affecting older Windows versions including Windows 7, Windows Server 2008 R2, and earlier. Like later vulnerabilities CVE-2019-1181 and CVE-2019-1182, BlueKeep can spread without user interaction, making it a significant security risk. Microsoft has released patches, and organizations are urged to apply them promptly. Misleading claims have circulated linking BlueKeep to ransomware like Dopplepaymer, but Microsoft investigations found no evidence of such propagation. Discussions on WindowsForum cover patching guidance, affected systems, and security best practices to mitigate this threat.
-
Customer Guidance for the Dopplepaymer Ransomware
Microsoft has been investigating recent attacks by malicious actors using the Dopplepaymer ransomware. There is misleading information circulating about Microsoft Teams, along with references to RDP (BlueKeep), as ways in which this malware spreads. Our security research teams have investigated...- News
- Thread
- actors attack bluekeep cybersecurity dopplepaymer guidance information investigation malware microsoft misleading prevention protection ransomware rdp research security teams threats vulnerability
- Replies: 0
- Forum: Security Alerts
-
Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)
Today Microsoft released a set of fixes for Remote Desktop Services that include two critical Remote Code Execution (RCE) vulnerabilities, CVE-2019-1181 and CVE-2019-1182. Like the previously-fixed ‘BlueKeep’ vulnerability (CVE-2019-0708), these two vulnerabilities are also ‘wormable’, meaning...- News
- Thread
- bluekeep cve-2019-1181 cve-2019-1182 exploitation fix malware microsoft patch propagation rce remote desktop security vulnerability
- Replies: 0
- Forum: Security Alerts
-
AA19-168A: Microsoft Operating Systems BlueKeep Vulnerability
Original release date: June 17, 2019 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this Activity Alert to provide information on a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows Operating Systems (OSs), including both 32- and...- News
- Thread
- authentication bluekeep cisa cve-2019-0708 cybersecurity end of life exploitation malware microsoft mitigation patch patch management rdp remote access security tcp/ip user rights vulnerability windows
- Replies: 0
- Forum: Security Alerts