Hackers write Windows RDP exploit days after MS warning
By Stewart Mitchell
Posted on 16 Mar 2012 at 13:22
SophosLabs says it has seen proof-of-concept code which tries to exploit the recently announced Microsoft Remote Desktop Protocol (RDP) vulnerability, causing PCs to crash.
Earlier this week, Microsoft warned people to install security update MS12-020, which addressed a remote code execution vulnerability in RDP affecting all versions of Windows.
At the time, the software giant said it expected to see hackers targeting the weakness within a month, but Sophos believes exploit code has already been written and published on Chinese websites.
“Microsoft warned earlier this week that it expected malicious hackers to exploit the flaw within 30 days. Well, that's already happening," reports a post on the Sophos blog.
"The code we've seen - in the form of Python scripts - attempts to exploit the MS12-020 RDP vulnerability and causes Windows computers to blue screen.”
Although the code was regarded as a proof of concept, Sophos said it wouldn't be a surprise if whoever was writing this code “further developed the attacks to produce a fast-spreading internet worm”.
Sophos repeated Microsoft's warning to patch as soon as possible.
Is your business a social business? For helpful info and tips visit our hub.
- 20 years of PC Pro: our first A-List
- Wikipedia's "right to be forgotten" protest hits the wrong note
- 3D printing hits the high street for plastic selfies
- 20 years of PC Pro: What amazed us in our first issue
- How Google Glass ruined my lunch hour
- Smartphone battery packs: can a USB power pack beat the festival battery blues?
- Windows Easy Transfer – not so "easy" in Windows 8.1
- Formula 1: what a difference virtualisation makes
- Office of the future: comfy chairs and tablets everywhere
- I went to Glastonbury and the only thing that got high was my smartphone
- How to write your company's IT security policy
- The key to choosing a secure password
- Please stop reposting fake Facebook messages
- Is Facebook safe for business?
- Don't rely on Chrome's password vault
- Facebook Graph Search: don't panic
- Gmail drafts and Pastebin: could they evade the email snoops?
- Applying for a job at GCHQ? Here's your plain-text password
- Google two-step verification: a must for business email
- Yes, I write down my passwords