DejaBlue, a new vulnerability in the Windows RDP protocol
DejaBlue is very similar to BlueKeep but is able to attack even later versions of Windows 7, including 10. Microsoft and has already published a patch, available through automatic updates.
While there are still between 700,000 and 800,000 unpatched Windows and potentially vulnerable to BlueKeep, researcher Michael Norris has discovered a new flaw in the RDP (Remote Desktop Protocol), DejaBlue.
This is a very dangerous flaw since, as in the case of BlueKeep, there is no need for user intervention – like a click on a link – to spread it from one computer to another. The security bug affects all Windows systems from 7 onwards but Microsoft reports that it is not aware of an exploit to be able to put it into practice. Fortunately, a patch is already available and those who have activated automatic updates can be considered safe.
Who deactivated them, would do well to remedy as soon as possible by installing Wired, making an exploit for DejaBlue could be simpler than BlueKeep since when DejaBlue crashes a system, it only crashes RTP but keeps active the other processes, thus giving the attacker the ability to act practically invisible to the user.
If you have not already done so, run to patch Windows, whatever version you use: they are practically all vulnerable to DejaBlue.
