The wave of BlueKeep attacks that security experts predicted could take down systems globally have arrived, but they are not in showing the form nor the destructive impact experts initially feared.
Security researchers have seen evidence of the first wave of attacks on the zero-day Windows Remote Desktop vulnerability revealed by Microsoft in May. At the time experts said BlueKeep posed threat to millions of internet-connected systems, with the capability to spread an automated worm from computer to computer, including nearly 1 million endpoints connected to the Internet of Things (IoT).
So far, BlueKeep has not lived up to this promise, nor has the vulnerability surfaced in the form of a worm. Instead, initial attacks install a cryptocurrency miner on an infected system, using processing power to generate cryptocurrency, according to reports.
Read more…
Source: ThreatPost