It’s two years since the WannaCry ransomware attack caused an estimated $4 billion damage, and the sobering fact is that it was avoidable – Microsoft had released an update that removed the vulnerability in Windows XP months earlier, but many organisations hadn’t installed it.
Even more concerning is that history may be about to repeat itself.
WannaCry primarily hit computers running Windows XP, but last month, Microsoft released a security alert advising that a serious new vulnerability (codenamed BlueKeep) had been discovered that impacts Windows 7 and earlier PCs – and again, have released a patch to close the fault.
Windows 7 is still in widespread use, so it’s essential that users make sure that this hole is blocked before the bad guys can exploit it.
The platforms affected are:
Desktop and laptop PCs : Windows XP, Windows Vista, Windows 7
Servers : Server 2003, 2008, 2008R2, Small Business Server 2003 / 8 / 11
Windows 8 / 8.1 / 10 are not impacted.
Running Microsoft Updates should automatically install the latest patches for Windows 7 and Server 2008 / 2008R2, but the older versions will require a manual download – see