• About
  • Advertise
  • Careers
  • Contact
Monday, March 20, 2023
No Result
View All Result
NEWSLETTER
Cyber360 News
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us
No Result
View All Result
Cyber360 News
No Result
View All Result
Home Security

First Windows ‘BlueKeep’ Attacks Spotted Installing Cryptocurrency Miners

by Cyber360 News
November 11, 2019
in Security
0
First Windows ‘BlueKeep’ Attacks Spotted Installing Cryptocurrency Miners
0
SHARES
4
VIEWS
Share on FacebookShare on Twitter

Back in May 2019, Microsoft revealed details about a severe hackable flaw that exists in the Remote Desktop Protocol (RDP) in Windows OS. The BlueKeep bug can enable an automated worm to spread malware and an estimated 1 million devices are vulnerable to this flaw.

It seemed like a matter of time before someone unleashed a global attack and as predicted, BlueKeep has finally struck. However, it isn’t as severe as feared.

jamf now

The first instance of the BlueKeep exploit was spotted by security researcher Kevin Beaumont. He detected the BlueKeep attack via Honeypots — a decoy computer system for detecting hacking campaigns.

The initial attack came from a “low-level actor” who appeared to have scanned the internet and infected vulnerable systems with a cryptocurrency miner. So far, there have been no signs of data-stealing or wipeout, no automatic spreading or signs of ‘wormable’ action.

The same has been confirmed by other security researchers such as Jake Williams and Marcus Hutchins (also known as ‘MalwareTech’ on Twitter) who hit a kill switch that stopped WannaCry.

It looks like a #BlueKeep worm has finally arrived! Kevin kindly sent me a crash dump and after some investigation I found BlueKeep artifacts in memory and shellcode to drop a Monero Miner. https://t.co/7G88YAW5lr

— MalwareTech (@MalwareTechBlog) November 2, 2019

FWIW, re:#BlueKeep we’re seeing a small uptick in 3389 related traffic at the @RenditionSec SOC, but not consistent with a worm. I would guess either:
1. It’s not a worm
2. Enough machines have been patched or the exploit is too unreliable for a worm to reach critical mass

— Jake Williams (@MalwareJake) November 2, 2019

Even though the flaw hasn’t hit “critical mass” yet, that doesn’t rule out the possibility of a more serious BlueKeep attack. As of August 2019, about 735,000 computers were still vulnerable to the BlueKeep vulnerability, according to Errata Security.

jamf now

Fortunately, the opportunity for launching a large scale attack using BlueKeep is closing. Microsoft has already fixed some BlueKeep-style bugs targeting every major OS from Windows 7 to Windows 10 and as more time passes, it is likely that more people would have patched their PCs against it.

Also Read: Hackers Can Plant Malware In Your Android Smartphone Via NFC

 

Cyber360 News

Cyber360 News

Next Post
DemonBot Fans DDoS Flames with Hadoop Enslavement

DemonBot Fans DDoS Flames with Hadoop Enslavement

Recent Posts

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

Twitch’s Entire Critical Data Leaked, Includes Streamer Earnings, Source Code

October 6, 2021
Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

Former U.S. Security Firm Helped The UAE Carry Out “Karma” iMessage Hack: MIT Tech Review

October 1, 2021
Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

Facing “This App Has Been Blocked For Your Protection” Issue? Here’s How You Can Fix It

October 1, 2021

Whats New in Kali Linux?

September 14, 2021

Kali Linux 2019.3 Release (CloudFlare, Kali-status, metapackages, Helper-Scripts & LXD)

September 14, 2021

Kali Linux 2021.3 Release (OpenSSL, Kali-Tools, Kali Live VM Support, Kali NetHunter Smartwatch)

September 14, 2021

Kali Linux 2018.4 Release

September 14, 2021

Kali Linux 1.0.5 and Software Defined Radio

September 14, 2021

Kali Tools Website Launched, 1.0.9 Release

September 14, 2021

Kali Linux Dojo at Black Hat Vegas 2016

September 14, 2021

Category

Site Links

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

About Us

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

© 2019 Cyber360 News - Powered by WebSensePro

No Result
View All Result
  • Home
  • Security
  • Data Breach
  • Cyber Attacks
  • Cyber Security
  • Cyber Crime
  • Contact Us

© 2019 Cyber360 News - Powered by WebSensePro

Login to your account below

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In