Brute Force RDP Attacks Depend on Your Mistakes
Brute Force RDP Attacks Depend on Your Mistakes
ZDNet, By Larry Selzter
Kaspersky Lab has added generic protection for an attack form they say is on the rise: brute force RDP attacks.
RDP stands for Remote Desktop Protocol and is the protocol for Windows Remote Desktop and Terminal Server. It is sometimes used for remote user access to servers, but very commonly used for remote administrator access. RDP "remotes" the Windows UI, allowing a remote user with an RDP client to log into Windows and use it as if local.
A brute force RDP attack would scan IP ranges and TCP port ranges (the default being 3389) for RDP servers, which could be either client or server systems. Once an attacker finds an RDP server, he would attempt to log on, particularly as Administrator. The IDS in Kaspersky products will now detect this type of attack as Bruteforce.Generic.RDP. Read more.
Brute Force RDP Attacks Depend on Your Mistakes
Kaspersky
Related Articles Business News
Kaspersky Lab Joins Forces with Merchant Risk Council to Help Combat eCommerce Fraud
As part of its mission to tackle online fraud, Kaspersky Lab has become the latest company to join forces with the Merchant Risk Council as Premier Solution Provider.Read More >Kaspersky Lab North America Recognized on CRN’s 2018 Security 100 List
Kaspersky Lab North America announced today that CRN®, a brand of The Channel Company, has named Kaspersky Lab to its third annual Security 100 list for endpoint security.Read More >Kaspersky Lab North America Releases its Inaugural Corporate Social Responsibility Report
Woburn, MA – December 19, 2017 – Kaspersky Lab North America today released its inaugural Corporate Social Responsibility Report, profiling the company’s continued commitment to volunteerism and philanthropy in the region over the past 12 months.Read More >