45% Connected Medical Devices Vulnerable to BlueKeep Exploit

Microsoft issued a rare legacy patch for vulnerability known as BlueKeep, which impacts about 1 million devices. According to a new report from CyberMDX, about 45 percent of connected medical devices are vulnerable to an exploit.The initial patch for CVE-2019-0708 on the Windows 2003, Windows 7, Server 2008, and XP Systems was released in May 2019. Federal agencies and Microsoft repeatedly warned organizations to apply the patch given its similarities to earlier global cyberattacks like WannaCry.The wormable flaw is found in the remote desktop protocol of the impacted platforms. A successful exploit would allow an attacker to remotely execute RDP without authorization to send tailored requests – including malware. Hackers have been targeting the gap with cryptocurrency attacks.In total, the report found about 22 percent of typical Windows devices on a hospital network are exposed to BlueKeep. But when discussing medical devices specifically, about 45 percent are vulnerable to BlueKeep.