Displaying items by tag: RDP

Attackers largely rely on exposed passwords when attacking systems, a new report suggests.

Cloud security specialist Zscaler has added three new capabilities to the Zscaler Zero Trust Exchange: private app protection, integrated deception, and privileged remote access from IIoT and OT systems.

Microsoft has released 97 CVEs on its first patch Tuesday of 2022, including four zero-days that have been publicly disclosed but not yet exploited in the wild; one of these is wormable.

The use of improperly secured Remote Desktop Protocol connections on Windows machines has been found to be the biggest entry point for ransomware, according to a quarterly evaluation by Coveware, a company that is intimately involved in handling such attacks.

The man called the invisible god of networks aka Fxmsp by the security firm Group-IB compromised more than 135 company networks and sold access to them in 44 countries over three-plus years, raking in at least $1.5 million, the firm says in a detailed document about him. The name is taken from a quote in an ad posted by a user Lampeduza to promote Fxmsp's services: "You will become the invisible god of networks."

More than three-quarters of the Windows ransomware cases across the 2017 to 2019 period studied by Mandiant Intelligence, a division of security firm FireEye, occurred after working hours.

Windows machines which have the remote desktop protocol enabled received login attempts within a day of being exposed on the Internet, the British security firm Sophos says, adding that the 10 honeypots it placed received a total of 4.3 million failed login attempts in a 30-day period.

Credentials for accessing computers at a major international airport through Microsoft's proprietary Remote Desktop Protocol have been found for sale for as little as US$10 by American security firm McAfee.

A Remote Desktop Protocol (RDP) client for the Raspberry Pi has been released by Parallels, allowing the low-cost hardware to be used to present virtual desktops.

A proof of concept exploit of Windows' Remote Desktop Protocol is circulating. If you can't patch your systems immediately, other protections may be called for.