{"id":28427,"date":"2019-08-13T21:51:13","date_gmt":"2019-08-13T21:51:13","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/"},"modified":"2019-08-13T21:51:13","modified_gmt":"2019-08-13T21:51:13","slug":"this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/","title":{"rendered":"This summer’s hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows"},"content":{"rendered":"

Patch Tuesday<\/strong> Microsoft, Adobe, and SAP may have just ruined more than a few summer vacation plans, thanks to a massive and critical Patch Tuesday bundle of security fixes this month.<\/p>\n

Microsoft still struggling to close RDP coding blunders<\/span><\/h3>\n

Among the 93 CVE-listed flaws patched this month are four particularly serious remote-code execution bugs in Remote Desktop Services that can be exploited by hackers to take control of vulnerable systems with nothing more than a specially crafted RDP packet. No username and password, or other authentication, is required: a miscreant simply has to be on the same network as a box running a vulnerable version of Remote Desktop Services, or reach it via the internet if it is public-facing, and fire a booby-trapped packet at the machine to commandeer it.<\/p>\n

The vulnerabilities, each discovered by Microsoft’s in-house security team, are designated CVE-2019-1181<\/a>, CVE-2019-1182<\/a>, CVE-2019-1222<\/a>, and CVE-2019-1226<\/a>.<\/p>\n

Because the flaws do not require user interaction to exploit, they are considered to be wormable: a software nasty could exploit the bugs to infect machines and then automatically go in search of more computer to hijack and continue spreading across the network or internet. Thus, it should be a top priority for admins to fix.<\/p>\n

<\/p>\n

We checked and yup, it’s no longer 2001. And yet you can pwn a Windows box via Notepad.exe<\/h2>\n

READ MORE<\/span><\/a><\/div>\n

As the Zero Day Initiative’s Dustin Childs just pointed out<\/a>, the programming screw-ups were likely found amid a cleanup effort by Microsofties following the discovery and disclosure of the BlueKeep RDP vulnerability in Windows<\/a> earlier this year. BlueKeep<\/a> was also a pre-authentication, wormable remote-code execution hole in Redmond’s remote desktop server code.<\/p>\n

“Clearly, the folks in Redmond thought similar bugs existed in RDP, and these four patches demonstrate that fact,” Childs noted. “These bugs also receive Microsoft\u2019s highest exploitability ranking, meaning we could likely see multiple RDP exploits circulating in the near future.”<\/p>\n

The four flaws are present, at least, in supported versions of Windows 7, Windows 8.1, Windows Server 2008, Windows Server 2012, and Windows 10 including its server editions, we’re told<\/a>.<\/p>\n

There are also no mitigations or workarounds, other than to turn off, or firewall off, RDP services on TCP port 3389, or install the patches. It is possible to use network-level authentication<\/a> to thwart exploitation of CVE-2019-1181 and CVE-2019-1182 on Windows 7 and Server 2008, we note.<\/p>\n

More from Microsoft<\/span><\/h3>\n

A vulnerability in the Windows DHCP Client (CVE-2019-0736<\/a>) is similarly considered wormable and is also advised to be among the first fixes administrators test and install.<\/p>\n

Another particularly nasty vulnerability addressed this month was CVE-2019-1201<\/a>, a remote code execution vulnerability in Microsoft Word that could not only be exploited with a document file, but also through a webpage or via the Outlook Preview Pane, making it very difficult to avoid.<\/p>\n

As usual, browser-based RCE flaws made up the bulk of this month’s critical fixes. Microsoft patched a total of 16 CVE-listed remote code execution vulnerabilities that could be exploited over the web, either in scripts or fonts embedded in a webpage.<\/p>\n

Hyper-V was on the receiving end of fixes for two RCE vulnerabilities (CVE-2019-0720<\/a> and CVE-2019-0965<\/a>) that could allow an attacker on a guest VM to escape and execute commands on the host server.<\/p>\n

A late inclusion to the August bundle was the fix for CVE-2019-0965<\/a>, the Windows elevation of privilege flaw outlined by<\/a> Project Zero researcher Tavis Ormandy.<\/p>\n

Microsoft is also among the vendors to issue patches for the five HTTP\/2 vulnerabilities disclosed today by Netflix. For Windows, the flaws are considered denial of service risks, as an exploit would cause the target system to freeze.<\/p>\n

Adobe drops 119 CVEs in monster August patch-a-thon<\/span><\/h3>\n

As large as Microsoft’s bundle of fixes was this month, it was topped by Adobe, who managed to tip the scales at 119 CVE-listed vulnerabilities.<\/p>\n

Most of those were for Reader and Acrobat, where 76 vulnerabilities<\/a> were patched. Those bugs allowed remote code execution and information disclosure flaws, all of which could be exploited via the traditional corrupted PDF file.<\/p>\n

Photoshop CC for Windows and macOS saw 34 vulnerabilities addressed<\/a> this month. Of those, 22 could allow for remote code execution and the remaining 12 out of bounds memory reads.<\/p>\n

The remaining patches were for Creative Cloud Desktop<\/a> (4 flaws), and Experience Manager https:\/\/helpx.adobe.com\/security\/products\/experience-manager\/apsb19-42.html (one flaw), as well as patches for a DLL hijacking<\/a> flaw present in Prelude, AfterEffects, Premier Pro, and Character Animator.<\/p>\n

SAP looks to clean up a baker’s dozen vulnerabilities<\/span><\/h3>\n

Admins running SAP software will want to be sure they get fixes for the 13 CVE-listed flaws<\/a> remedied by this month’s updates.<\/p>\n

The most serious were for a remote code execution flaw in NetWeaver UDDI Server (CVE-2019-0351), code injection vulnerabilities in SAP Commerce Cloud (CVE-2019-0344, CVE-2019-0343,) and a server-side-request forgery in NetWeaver Application Server for Java (CVE-2019-0345). \u00ae<\/p>\n

Sponsored:<\/span> Balancing consumerization and corporate control<\/a><\/p>\n

READ MORE HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Plus special guest stars Adobe and SAP in this month’s security fixes Patch Tuesday\u00a0 Microsoft, Adobe, and SAP may have just ruined more than a few summer vacation plans, thanks to a massive and critical Patch Tuesday bundle of security fixes this month.\u2026 READ MORE HERE…<\/p>\n","protected":false},"author":2,"featured_media":28428,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-28427","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"\nThis summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"This summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-08-13T21:51:13+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"This summer’s hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows\",\"datePublished\":\"2019-08-13T21:51:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/\"},\"wordCount\":844,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/\",\"name\":\"This summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg\",\"datePublished\":\"2019-08-13T21:51:13+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/08\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"This summer’s hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"This summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/","og_locale":"en_US","og_type":"article","og_title":"This summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-08-13T21:51:13+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"This summer’s hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows","datePublished":"2019-08-13T21:51:13+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/"},"wordCount":844,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/","url":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/","name":"This summer's hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg","datePublished":"2019-08-13T21:51:13+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/08\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/this-summers-hottest-sequels-bluekeep-ii-iii-iv-and-v-the-latest-wormable-rdp-holes-in-microsoft-windows\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"This summer’s hottest sequels: BlueKeep II, III, IV and V \u2013 the latest wormable RDP holes in Microsoft Windows"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/28427","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=28427"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/28427\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/28428"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=28427"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=28427"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=28427"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}