Significant Increase in Brute Force Attacks Targeting RDPs
Over the past few weeks, in our security monitoring centre, we have been observing an increase in brute force attacks targeting "remote office" (ROP) corporate access.
This type of attack consists of trying millions of combinations of usernames or passwords in order to find ONE existing in your network to take control of it. Unfortunately, these attacks still work today because the access control systems of some corporate networks are misconfigured. Some will result in intrusions or ransomware infections. This modus operandi is used in several cases of infections by famous ransomwares such as CRISIS DARMA or SODINOKIBI.
Cybersecurity, (being everyone's business), you too as a user can be part of the solution and prevent your corporate network from being hacked.
For example, even if your corporate password policy states that you must use passwords containing a minimum of eight (8) characters, don't settle for the minimum (a bit like in many areas of our daily lives!). Instead, use secret phrases (at least 20 characters, no phrases from a book/dictionary, etc.). These are much harder for hackers to find than the usual passwords.
Let's take care of our health and the health of our corporate networks.