NSA warns Windows Users to update their computers
Too many people ignore it when Microsoft recommends that you update your version of Windows, so the National Security Agency is getting involved this time. The NSA is urging that Windows users patch the operating system to its latest update, after the security vulnerability known as BlueKeep was discovered.
The NSA's advisory, which you can read in full here, notes that Bluekeep is a vulnerability in the remote desktop feature on legacy versions of Windows. “The National Security Agency is urging Microsoft Windows administrators and users to ensure they are using a patched and updated system in the face of growing threats,” the advisory reads.
Microsoft has warned that the Bluekeep flaw is potentially "wormable," meaning it could spread without user interaction across the internet. Microsoft have seen devastating computer worms inflict damage on unpatched systems with wide-ranging impact, and are seeking to motivate increased protections against this flaw. The advisory notes that these are the affected versions of Windows: Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7 and Windows Server 2008 R2.
Microsoft has issued a patch, but millions of machines are reportedly still vulnerable. The NSA says it's concerned that hackers will use this vulnerability in ransomware and exploit kits that contain other known exploits, increasing their capabilities against other unprotected systems. The Bluekeep vulnerability could also be used to conduct denial of service attacks, according to the agency.