Security News > 2020 > February > BlueKeep Flaw Plagues Outdated Connected Medical Devices

BlueKeep Flaw Plagues Outdated Connected Medical Devices
2020-02-19 20:29

While Microsoft issued patches for the infamous BlueKeep vulnerability almost a year ago, researchers warn that almost half of connected medical devices in hospitals run on outdated Windows versions that are still vulnerable to the remote desktop protocol flaw.

Even worse, the number of connected medical devices running Windows that are vulnerable to BlueKeep is considerably higher - around 45 percent, they said.

Almost a year later, researchers have found that an alarming number of connected medical devices remain vulnerable to BlueKeep.

The wormable implications of BlueKeep on medical devices are particularly concerning due to the hit that many hospitals took after attackers launched the 2017 WannaCry attack, interrupting several critical services at hospitals across England.

Up to 11 percent of connected medical devices are exposed to DejaBlue, a set of RDP flaws affecting Windows 7, Windows 8.1, and Windows 10.


News URL

https://threatpost.com/bluekeep-flaw-plagues-medical-devices/153029/