BlueKeep is a security vulnerability that was discovered in Microsoft’s Remote Desktop Protocol, which allows the possibility of remote code execution.
First reported in May 2019 by the UK National Cyber Security Centre, it is present in all Windows NT-based versions of Microsoft Windows from Windows 2000 through to Windows Server 2008 R2 and Windows 7. Microsoft issued a security patch (including an out-of-band update for several end-of-life versions of Windows such as Windows XP and Windows Server 2003) on 14 May 2019.
Here are a few steps you should follow which will help protect your devices from the BlueKeep vulnerability:
- Update your Windows operating system – Enable automatic updates in Windows 7, Windows Server 2008 R2 and Windows Server 2008. If you are running older versions such as Windows XP or Windows server 2003 you can find the security update here.
- Disable Remote Desktop Protocol – While installing the security update, it’s important to disable Remote Desktop Protocol (RDP) in your computer. Once the update is complete, you can re-enable RDP if you require.
- Check your RDP configuration – It’s important to ensure that your RDP configuration is set correctly in order to stay secure. A good example of this would be to configure your RDP settings to only allow devices on the local network or devices connected via a VPN to connect remotely to your device. Alternatively, you can whitelist specific IP addresses who you wish to be allowed to connect.
- Use the latest version of your security solution – If you are not using a security solution, it is very important to start using one as this is the only way to ensure you remain secure. If you are already using a security solution, then ensure that it has been updated to the very latest version as older versions will most likely not detect new vulnerabilities.
The BlueKeep vulnerability is very similar to encryption ransomware WannaCry which was responsible for infecting more than 2000 computers back in 2017, ultimately demanding ransom to unlock them. Some good news regarding the Bluekeep vulnerability is that there is no hard evidence that the attackers are really using the vulnerability however, it is more than likely just a matter of time before they do.
If running an older version of Windows OS on your device then be sure to follow the steps mentioned above however, if you’re running a newer version of Windows OS then don’t panic. The best way to ensure your devices security is to have the latest and most up to date security solution installed onto your device.
Thank you for reading and for more details on our products and services please feel free to visit us at intellope.com. You may just find what you need to boot your business forward.