There has been a new RDP based attack using a similar method to the WannaCry attacks, using RDP ports on 3389 that are open to the internet, this attack deploys Crypto-Mining Payloads on devices running vulnerable versions of windows. 

It has been confirmed that a widespread attack is underway on several versions of windows standalone and windows server operating systems, these include:

Windows Server 2003, 2008, 2008 R2 and Windows XP, Vista and 7.

Always ensure that your OS is up to date. 

 

Warning Signs

There have been several signs that Microsoft has been trying to patch vulnerabilities. The 1st indication of the impending attacks was when MS provided a patch to the long-dormant Windows XP after many years without an update.

Several US governmental and private entities have issued very serious “Update NOW” notifications to the system administrators, although the initial fears of s “WannaCry-esc” worm lawlessly spreading have yet to rear its head but this is an issue to take seriously. 

If you have noticed that your PC or Server has gotten unusually slow and experience high CPU\GU usage then it may be advisable to block port 3389 in your firewall and disable RDP services on servers.

Related Articles

Windows 7 attacks rise 71%

A report published by security company Webroot has shown a massive increase in infections on systems running Windows 7. The mid-year update of the Webroot Threat Platform shows that since 2018 Windows 7 exploits have risen by 71% and that the number of IP hosts have...

Facebook Facing Pressure on its Libra Blockchain Project

According the The Verge, Libra Association members is being actively pressured by Lawmakers in the US to rethink their participation with the group. CEO’s of Visa, MasterCard, Stripe have sent a letter warning of the risk the digital currency could face, among them...

Join Our Newsletter

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque

Stay Up to Date With The Latest News & Updates