Now it’s time to disable direct RDP access or at least patch it:
Sophos have made an BlueKeep exploit which changes the Windows accessibility shortcuts, and renames utilman.exe so you get shell :-O
Read more here:
Video:
Related Posts
New Windows 10 vulnerability allows anyone to get admin privileges
Sophos Connect Migration script from UTM SSLVPN- PrintNightmare: Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability
- PrintNightmare: Out-of-band updates ready – patch now!
- Exploit: PrintNightmare
- PATCH NOW: April 2021 Exchange Server Security Updates