Security researchers have discovered a new version of Sarwent malware that has new command functionality, such as executing PowerShell commands and preference for using RDP.
Security firm Verint analyzed the top 20 vulnerabilities to patch now that are under active attack and exploited by cyber attack groups worldwide. The report is aimed at assisting security teams in prioritizing and enhancing their organization's patch management efforts.
For the third time this year, Microsoft has warned users and organizations to stay vigilant against BlueKeep and patch their systems. In collaboration with security researchers, Microsoft investigated recent system crashes have been caused by a BlueKeep Metasploit module.
Microsoft issued the August 2019 Security Updates on Tuesday that include 93 unique vulnerability fixes, 29 of those rated critical. In addition, two of the patches address two critical Remote Code Execution (RCE) "wormable" vulnerabilities (CVE-2019-1181 and CVE-2019-1182) in Remote Desktop Services.
The Department of Homeland Security (DHS) just issued a new warning on the "wormable" BlueKeep threat and vulnerability. DHS says attackers can exploit unpatched systems to perform remote code execution.
A new botnet dubbed "GoldBrute" targets 1.5 million publicly exposed RDP servers on the internet via brute force attack.
Siemens Healthineers, a Siemens company that makes medical products, has disclosed multiple software products are impacted by the Remote Desktop Services (RDS) or BlueKeep vulnerability.
Security experts have been warning about bad actors soon developing exploits for a BlueKeep vulnerability that was patched by Microsoft earlier this month. Exploits in the wild are likely closer than ever after one security company spotted a huge uptick in scanning for BlueKeep over the weekend.
Security experts are warning users and organizations to patch a critical Remote Desktop Services vulnerability CVE-2019-0708 dubbed "Bluekeep" affecting Windows systems.