Over the last few weeks, a major vulnerability has been detected in Windows 7 machines and older. If you have Windows 7, Windows XP, Windows Server 2003 or 2008 you must take action.
13 August, 2019 Update
The Australian Cyber Security Centre has issued a warning last night to businesss and government that a recently revealed legacy Windows exploit BlueKeep has jumped ‘research’ quarantine. It is expected to start picking victims imminently.
The vulnerability has become so serious that the Australian Cyber Security Centre has warned Microsoft Windows users to make sure they are using updated systems to guard against cyber-attacks.
Known as the “BlueKeep Mega-Worm” vulnerability, it leaves machines open to cyber-attacks. BlueKeep can allow a hacker to take over a Windows 7 or XP machine and encrypt all data on the machine and any connected shared drives.
BlueKeep is “wormable”, which means it can self-propagate from machine to machine. An unauthenticated attacker can achieve full run of a victim machine in about 22 seconds. Infection can be fast moving, similar to the WannaCry wave of infection.
It is recommended that action is taken immediately to update all vulnerable computers with the latest MS Security Roll Up package.
If you’re running older versions of Windows Server 2008 and 2003, these will need to be patched also.