Attacker exploits BlueKeep vulnerability to install crypto-mining malware – Cryptocurrency News

BlueKeep (CVE-2019-0708) is a security vulnerability discovered in Microsoft's Remote Desktop Protocol implementation, which allows for the possibility of remote code execution. Microsoft had fixed the issue back in May. But one million devices were vulnerable to this bug. Recently first BlueKeep exploit was spotted by security researcher Kevin Beaumont.

The Blukeep bug allows hackers to install cryptocurrency mining malware into the systems. Microsoft has urged users to install the patch. The patch is available for unsupported versions of Windows, including XP. 

More than 70,000 systems are still vulnerable to attacks. BlueKeep exploit was spotted by security researcher Kevin Beaumont, who has been running a worldwide honeypot network, named BluePot, in an effort to catch exploitation attempts.

The first attack came from a “low-level-actor” who scanned the vulnerable device and then installed cryptocurrency Monero miner in them. As of now, there have been no signs of data-stealing or wipeout, or “wormable’ action” has been reported. 

Security researchers Marcus Hutchins also tweeted that “it looks like BlueKeep worm has finally arrived.” He added that after some investigation, he found BlueKeep artifacts in memory and shellcode to drop a Monero Miner.

Kevin Beaumont in a blog post wrote that so far the content being delivered with BlueKeep appears to be frankly a bit lame — coin miners aren’t exactly a significant threat — however, it is clear people now understand how to execute attacks on random targets, and they are starting to do it. 

Alexander Aryan
Alexander Aryan
After completing his Masters in Business Administration and Management from the California State University, Alexander dedicated his life into studying and writing about bitcoin and the technology behind it as he believes it to be the money of the future. Apart form being a writer, Alex is also a great speaker and loves to participate in blockchain events.

Leave a reply

Please enter your comment!
Please enter your name here