More than 970,000 systems, mostly in the U.S. and China, still are vulnerable to BlueKeep, according to numbers published by security vendor Bitsight, which incorporates previous findings by researcher Robert Graham. Nearly 1.6 million systems have been patched, and the status of another 1.3 million is unclear.