First wave of BlueKeep attacks on zero-day Windows vulnerability have arrived, but they are not in showing the form nor the destructive impact experts initially feared. Initial attacks install a cryptocurrency miner on an infected system, using processing power to generate cryptocurrency. Instead of a worm that moves automatically and spreads quickly, attackers instead leveraged the vulnerability s connective capability to scan the Internet for vulnerable machines to exploit, researchers said. Microsoft issued a stern warning to users to patch vulnerable systems at the time, noting BlueKeep’s potential to wreak as much havoc as WannaCry.
Source: https://threatpost.com/bluekeep-attacks-have-arrived-are-initially-underwhelming/149829/