CybersecurityMicrosoftRansomwareRemote Desktop ServicesPatch Management
CISA: Windows BlueHammer flaw now exploited by ransomware gangs
June 29, 2026
Back to all postsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a critical vulnerability in Microsoft's Remote Desktop Services (RDS), known as BlueKeep or CVE-2019-0708. This flaw, discovered earlier this year, allows hackers to execute remote code on affected systems without needing any credentials. Recently, cybercriminal groups have started exploiting this vulnerability to deploy ransomware, posing a significant threat to Canadian businesses that use Windows RDS and haven't yet patched their systems. It's crucial for SMB owners and IT managers to prioritize updating their RDS servers with Microsoft's security patch as soon as possible.
Source: BleepingComputer
CybersecurityMicrosoftRansomwareRemote Desktop ServicesPatch Management
Concerned about this threat to your business?
We help Canadian SMBs deploy the controls discussed in this article. Free 30-minute assessment — no obligation.
