Older Windows devices at risk of classic hacks

News
By
published

Almost one million devices are vulnerable to BlueKeep

Windows 7
Image credit: TechRadar

Almost one million older Windows devices are still vulnerable to the BlueKeep security flaw even after Microsoft released a security patch to address the vulnerability.

The vulnerability, known as CVE-2019-0708, affects Windows Remote Desktop Services (RDS) and Microsoft has already addressed it with its May 2019 Patch Tuesday update.

The BlueKeep security flaw, which has been described as wormable, can be utilized by malware to spread in a similar way to how the WannaCry ransomware did back in 2017 through the EternalBlue exploit.

By sending specially created requests via the Remote Desktop Protocol (RDP), a hacker can exploit the flaw to execute arbitrary code and take control of a user's machine without their knowledge.

Microsoft has already released patches for Windows 7, Windows XP, Server 2008 and Server 2003. By enabling Network Level Authentication (NLA) Windows 7 and Server 2008 users can prevent unauthenticated attacks and alternatively the threat can be mitigated by blocking TCP port 3389.

BlueKeep security flaw

Researchers have already developed proof-of-concept exploits for BlueKeep though none have been released publicly. Many expect attacks exploiting the flaw to appear any day now and to make matters worse, industrial and medical products are also at risk.

By using the Masscan port scanner and a modified version of rdpscan, Errata Security's Robert Graham carried out an internet scan that found more than 923,000 devices which appear to be vulnerable to BlueKeep attacks.

Graham also identified more than 1.4m machines that have been patched to protect them from BlueKeep and around 1.2m devices that cannot be exploited online since they're using NLA or the Credential Security Support Provider protocol.

If you're unable to install the latest security patch from Microsoft to protect your devices from the BlueKeep security flaw, thankfully opatch has released a micropatch which can be easily applied to vulnerable systems.

  • We've also highlighted the best antivirus to help keep your systems protected from the latest cyber threats

Via Security Week

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
A close-up of a phone screen showing the Telegram, Signal and WhatsApp apps
Agentic AI has “profound” issues with security and privacy, Signal President says
botnet
Another top security camera maker is seeing devices hijacked into botnet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
How to prevent cyberattacks
NTT admits hackers accessed details of almost 18,000 corporate customers in cyberattack
Woman shocked by online scam, holding her credit card outside
Cybercriminals used vendor backdoor to steal almost $600,000 of Taylor Swift tickets
Latest in News
Nvidia geforce rtx 3050
RTX 5050 rumors detail full spec of desktop graphics card, suggesting Nvidia may use slower video RAM – but I wouldn’t panic yet
OnePlus 13
OnePlus is ditching the Alert Slider for an iPhone-style customizable button - and I’ll be sad to see it go
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
Q Acoustics Q SUB80, QSUB100 and QSUB120 subwoofers
Q Acoustics wants to bring the bass to your post-Oscars movie catch-up
Hospital
Major Oracle outage hits US Federal health record systems
Samsung Galaxy A56 display
Samsung’s new budget handsets are getting One UI 7 before the Galaxy S24 Ultra, and I’m as confused as you are
More about security
botnet

Another top security camera maker is seeing devices hijacked into botnet
healthcare

Software bug meant NHS information was potentially “vulnerable to hackers”
A digital representation of a lock

The true threat of business downtime
See more latest
Most Popular
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Tuesday, March 11 (game #373)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Tuesday, March 11 (game #639)
Quordle on a smartphone held in a hand
Quordle hints and answers for Tuesday, March 11 (game #1142)
botnet
Another top security camera maker is seeing devices hijacked into botnet
healthcare
Software bug meant NHS information was potentially “vulnerable to hackers”
OnePlus 13
OnePlus is ditching the Alert Slider for an iPhone-style customizable button - and I’ll be sad to see it go
Nvidia geforce rtx 3050
RTX 5050 rumors detail full spec of desktop graphics card, suggesting Nvidia may use slower video RAM – but I wouldn’t panic yet
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
Michelle and Kid Cosmo watching a video projected onto a screen in Netflix's The Electric State movie
'We could not achieve that with puppetry or animatronics': Joe and Anthony Russo didn't want to build real-life robots for The Electric State for two big reasons
Workers at computers in an office
Cybersecurity workers aren't massively happy with their employers - but they are being paid pretty well