Are weak login credentials allowing criminals to bypass your security?

23rd July 2018 Are weak login credentials allowing criminals to bypass your security?

 

A study by cyber security firm McAfee has found that criminal marketplaces on the dark web are selling Remote Desktop Protocol (RDP) access for as little as $3 and, in some instances, offering up to 40,000 separate RDP connections. 

Remote desktop protocol (RDP) is a secure network communications protocol designed for remote management, as well as for remote access to virtual desktops, applications and an RDP terminal server.
RDP software allows a user’s desktop environment to be run remotely from another device. This can be very useful for customer service support and remote working. 

McAfee reports that cyber criminals scan the Internet for systems that accept RDP connections and use a ‘brute force’ attacks to gain access to systems with weaker login credentials. 

In a brute force attack, automated software is used to generate a large number of consecutive guesses as to the value of the desired data.

RDP vulnerabilities potentially allow an attacker to obtain full access and control of the system. Once access is obtained, the attacker can steal data, install malware or conduct other malicious activities.  

Changing default settings, using more secure passwords, two-factor authentication and limiting the number of login attempts would help to lower the risk of RDP credentials being stolen. 

For more information on how to keep your network secure contact us here