<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=1354242&amp;fmt=gif">

What is a Bluekeep vulnerability?

Bluekeep Overview

BlueKeep is a critical vulnerability found in Microsoft server software called Remote Desktop Services. This vulnerability has the potential to be exploited by cybercriminals to launch ransomware, malware or other attacks.

Best Practices for Securing Bluekeep

Patching the affected systems is the ideal next step. We recommend that your clients take the following steps to address their Bluekeep vulnerability.  

  1. Work with their IT team to investigate the vulnerability 

  2. Patch the affected systems. If they are unable to install the updates that Microsoft has issued, they should implement appropriate mitigations: 

    • Enable Network Level Authentication (NLA) on systems running running supported editions of windows, OR
    • Block TCP port 3389 via enterprise perimeter firewall, OR 
    • Disable remote desktop services when they are not required

     

    Corvus is also here to answer questions about how to resolve an issue.

Learn more about Bluekeep 

Recommended Blogs

How to Take Email Security to the Next Level
A Guide to Threat Detection
A Guide to Funds Transfer Fraud
A Guide to Data Encryption
What is RDP and why is it a security concern?

Recent Articles

Social Engineering Outgrows the Inbox


Social engineering attacks remain one of the most common ways threat actors gain initial access to an organization’s systems. Learn more in this article.

Q1 '25 Travelers' Cyber Threat Report: Record Attack Activity


Ransomware surged in Q1 with 2,200+ victims—a 35% jump from last quarter. Get the full story in our latest report. Download now.

Best Practices for Managing Cyber Risks in Open-Source Software


Discover key strategies to mitigate cybersecurity risks in open-source software such as vetting standards, compliance, and the role of cyber insurance.