Security

Microsoft Reveals Massive Windows Vulnerability that Could Bring the Next WannaCry

Posted on
wannacry ransomware windows vulnerability

Microsoft just released a blog post that reveals a massive vulnerability in a lot of Windows versions, including consumer and enterprise.

While vulnerabilities are commonly found and eventually patched in all types of software, this one (CVE-2019-0708) could have devastating consequences similar to WannaCry if users do not update as soon as possible.

The vulnerability is found in Remote Desktop Services, formerly known as Terminal Services, and includes Windows 7, Windows Server 2008 R2, Windows Server 20008, Windows 2003 and Windows XP. Essentially, most OSes outside of Windows 8 and XP have this vulnerability.

To try to drive home the seriousness of this security flaw and the importance of applying the patch immediately, Microsoft explained in detail what could happen:

“The Remote Desktop Protocol (RDP) itself is not vulnerable. This vulnerability is pre-authentication and requires no user interaction. In other words, the vulnerability is ‘wormable’, meaning that any future malware that exploits this vulnerability could propagate from vulnerable computer to vulnerable computer in a similar way as the WannaCry malware spread across the globe in 2017. While we have observed no exploitation of this vulnerability, it is highly likely that malicious actors will write an exploit for this vulnerability and incorporate it into their malware.”

As Microsoft said, WannaCry was a devastating cyberattack in 2017. The WannaCry ransomware cryptoworm used an NSA-developed exploit and spread like wildfire through outdated Windows systems, encrypting hundreds of thousands of machines and demanding a ransom in Bitcoin.

During the attack, the UK National Health Service hospitals were targeted and had to, in some cases, turn away patients and ambulances.

Even more recently, a WannaCry variant made one of Apple’s suppliers shut down its facilities after infecting 10,000 computers.

With that in mind, if you are running machines with older variants of Windows, head to Microsoft and get the patch for the CVE-2019-0708. Preferably right now.

Also read: ✍New “Scranos” Malware Not Only Steals Users’ Money, It Also Subscribes Them to Youtube Channels”✍

Follow TechTheLead on Google News to get the news first.

Subscribe to our website and stay in touch with the latest news in technology.

Related Items:, ,

Recommended for you

Must Read

beyonce with cat ear headphones beyonce with cat ear headphones
13.1K
Guides

Beyonce’s Cat Ear Headphones? Here’s How to Get Your Own
apple watch se apple watch se
31.5K
Smart Life

Can You Trust It? How Accurate is Apple Watch Calories Tracker
20.3K
1
Guides

7+ Of The Best Retro Headphones That Are Actually Worth Your Money
iphone call forwarding iphone call forwarding
11.7K
Guides

Forwarding Your Calls from iPhone: A Quick Guide
12.8K
Phones

How Protective Are Spigen Smartphone Cases? All You Need to Know About the Most Popular iPhone Cases
9.8K
Phones

iPhone Apps 2022: The Best Apps For iPhone Users
14.2K
Phones

How To Transfer Data From Android to iPhone

Are you looking for the latest innovations in tech? You're in the right place, just subscribe to our RSS feed


Techthelead Romania     Comedy Store

Copyright © 2016 - 2023 - TechTheLead.com SRL

To Top