Microsoft released at patch for CVE-20190708, a Remote Desktop vulnerability I nicknamed BlueKeep. Exploit would likely cause blue screen of death (Windows to crash reboot) and a worm would lead to the Game of Thrones Red Keep moment. Since then it has been remarkably quiet since the release of the patch. I built a worldwide honeypot network to spot exploitation, which I called BluePot: The honeypot was built using Azure Sentinel with Microsoft Sysmon.”]
Source: https://doublepulsar.com/bluekeep-exploitation-activity-seen-in-the-wild-bd6ee6e599a6