According to some reports, there are many unpatched RDP servers although some experts and government agencies issue warnings.
Sophos records a BlueKeep proof-of-concept video to show how it is dangerous.
Now, lets go to learn some details on the BlueKeep exploit attack.
This BlueKeep exploit is dangerous.
Microsoft warns users to apply the patches, Sophos also gives a warning.
The risk is dire so Microsoft releases a patch for these unsupported operating systems.
According to this security company, ultiman.exe has system level privileges.
This attack can be put in the category spray and pray.
That is, attackers dont choose the target and some percentage of machines will be impacted.
Recommended Actions
Sophos researchers dont decide to release the BlueKeep proof-of-concept since this could be too risky.
However, a technical support report is given by this company, showing recommended measures.
The best way to protect users from attack is to patch all impacted computers against this exploit.
To mitigate this threat over time, some new protections are also offered:
