This is not the only "live" attack that was discovered last week. On November 3, an interesting description of an attack on computers with the BlueKeep vulnerability was published on the Kryptos Logic blog. This issue in the Remote Desktop Services feature in Windows 7 and Windows 2008 Server was discovered in May. Despite the fact that the patch was released not only for these (relatively) modern OSs, but also for unsupported Windows XP and 2003 Server, at the time the patch was released, there were about a million vulnerable systems. In September, an exploit for BlueKeep was published as part of the Metasploit package. Even on an unpatched system, you can change the settings to make exploitation of the vulnerability impossible. Nevertheless, the researchers proceeded from the high probability that many systems would not be updated and configured correctly. How then to determine when they will begin to attack for real?