Η ομάδα ασφάλειας της Microsoft πιστεύει ότι έρχονται περισσότερο καταστροφικές επιθέσεις του BlueKeep και παροτρύνει τους users and companies to install the updates if they haven't already.
The company's warning came when security investigators discovered the first malware campaign using BlueKeep's vulnerability.
The attacks, which were detected last weekend, used BlueKeep to break into systems of Windows who were not informed and install one cryptocurrency miner.
Many security researchers have underestimated the attacks and have not considered the campaign BlueKeep has been using for the past six months as a campaign that could lead to major disasters.
This is because although Microsoft announced that BlueKeep could be used to build worm (self-spreading) malware, the weekend attacks did not indicate malware that could spread itself.
The attackers were sweeping the dianetwork for vulnerable systems and the attacks were done on each unpatched system, one at a time, using a BlueKeep exploit, and then installing a cryptocurrency miner.
This, of course, is not similar to the catastrophic outbreak that Microsoft reported could cause BlueKeep. In addition, in many cases the BlueKeep exploit failed to work, but it destroyed the systems.
But Microsoft continues to say that this is only the beginning, and that the attackers will perfect their attacks. The company says the worst is coming.
“While there have been no other confirmed attacks with ransomware or other types of malware software until now, the BlueKeep exploit will likely be used to deliver malware more damaging than miners,” said today Microsoft.
So Microsoft is encouraging users (for the third time this year) to install the updates they release immediately.