BlueKeep warnings having little effect on Windows patching

Q&A: Why information security data analysis is so complex

Risk management vendor BitSight, which posted new research last Thursday, incorporated Graham's tool in its own scanning platform and initially found 972,829 vulnerable Windows systems on May 31, one day after the first Microsoft warning. Since that time, the company has conducted additional scans on a regular basis, according to Dan Dahlberg, head of security research at BitSight. Dahlberg said more recent scanning data indicated that "some vulnerable systems" have been patch, but he couldn't provide exact figures.

"It's tough to say right now whether the warnings have had any real effect on a day-to-day basis for the number of unpatched systems out there," Dahlberg said.