Zero-Day RDP Exploit threatens Windows

/* Deb Shinder*/ /*">Deb Shinder*/ /*Deb Shinder*/ Posted On August 29, 2011
0
417 Views


One of the latest Zero-Day exploits infecting Windows computers is a worm called Morto and it uses the Remote Desktop Protocol (RDP), generating large amounts of outbound RDP traffic on port 3389 (the default port for RDP) and compromising both desktop and server systems, including those that are fully patched. It basically uses a brute force password attack to attempt to log onto the Remote Desktop servers as an administrator. If you aren't using the Remote Desktop feature, you should turn it off. You can also change the port that it uses, or require remote users to establish a VPN to connect to their internal computers. Complex passphrases will help to protect against the brute force attack. Find out more here:

http://www.f-secure.com/weblog/archives/00002227.html

Post Views: 417


Home » Blog Archive » WS Blogs » Debra Shinder WS Blog » Zero-Day RDP Exploit threatens Windows

Author

Deb Shinder

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.




Leave A Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

  • Join Our Newsletter

    Learn about the latest security threats, system optimization tricks, and the hottest new technologies in the industry.

    Over 1,000,000 fellow IT Pros are already on-board, don't be left out!


You are reading
Zero-Day RDP Exploit threatens Windows
Share No Comment