QUE Cyber Security Advisory – Exploit Remote Desktop Vulnerability (CVE-2019-0708) dubbed BlueKeep.
If you are still using old version of Windows XP, VISTA, 7, Windows Server 2003 and 2008 you need to patch your operating system as soon as possible. Hackers already created a module to possibly exploit this Remote Desktop Services Remote Code Execution Vulnerability.
Microsoft has warned that this flaw is potentially “wormable” meaning it could spread without user interaction across the internet. The CVE-2019-0708 dubbed “BlueKeep” is a vulnerability in the Remote Desktop (RDP) protocol. It is present in Windows 7, Windows XP, Server 2003 and 2008, and Vista. Microsoft rate this vulnerability at 9.8 on a 10 point scale.
Simple approach to protect your system against BlueKeep.
- Automate your windows security patch installation.
- Block TCP port 3389.
- Disable Remote Desktop Services if they are not required. Most home computers doesn’t need this service enable.
Resources:
- Microsoft – https://support.microsoft.com/en-us/help/4500705/customer-guidance-for-cve-2019-0708
- Microsoft https://blogs.technet.microsoft.com/msrc/2019/05/30/a-reminder-to-update-your-systems-to-prevent-a-worm/
- National Security Agency (NSA) https://www.nsa.gov/News-Features/News-Stories/Article-View/Article/1865726/nsa-cybersecurity-advisory-patch-remote-desktop-services-on-legacy-versions-of/
Image by Burst pexels.
