Proof-of-concept malware, developed internally within Microsoft to test a critical vulnerability in Windows’ Remote Desktop Protocol (RDP), has leaked on to the internet.
Last week, Microsoft announced that it had discovered a critical vulnerability in RDP, allowing hackers to install malware without the end user being aware of the attack. It issued a patch closing the vulnerability as part of the most recent Windows Update.
According to TechWorld, the source code to malware taking advantage of the vulnerability, internally developed by Microsoft as a Proof of Concept, has leaked on to a Chinese file hosting site.
SMEs are urged to make sure all their Windows PCs are updated, or at least have Network Level Authentication enabled, and that all security software is up to date.
ABOUT THE AUTHOR
COMMENTS
SmartCompany is committed to hosting lively discussions. Help us keep the conversation useful, interesting and welcoming. We aim to publish comments quickly in the interest of promoting robust conversation, but we’re a small team and we deploy filters to protect against legal risk. Occasionally your comment may be held up while it is being reviewed, but we’re working as fast as we can to keep the conversation rolling.
The SmartCompany comment section is members-only content. Please subscribe to leave a comment.
The SmartCompany comment section is members-only content. Please login to leave a comment.