There has been a new RDP based attack using a similar method to the WannaCry attacks, using RDP ports on 3389 that are open to the internet, this attack deploys Crypto-Mining Payloads on devices running vulnerable versions of windows. 

It has been confirmed that a widespread attack is underway on several versions of windows standalone and windows server operating systems, these include:

Windows Server 2003, 2008, 2008 R2 and Windows XP, Vista and 7.

Always ensure that your OS is up to date. 

 

Warning Signs

There have been several signs that Microsoft has been trying to patch vulnerabilities. The 1st indication of the impending attacks was when MS provided a patch to the long-dormant Windows XP after many years without an update.

Several US governmental and private entities have issued very serious “Update NOW” notifications to the system administrators, although the initial fears of s “WannaCry-esc” worm lawlessly spreading have yet to rear its head but this is an issue to take seriously. 

If you have noticed that your PC or Server has gotten unusually slow and experience high CPU\GU usage then it may be advisable to block port 3389 in your firewall and disable RDP services on servers.

Related Articles

New Macs powered by ARM chips might drop in November

A special event may be on the cards for Apple on November 17 as it prepares to launch ARM-powered hardware. Jon Prosser, a tech analyst, tipped off on Twitter that Apple plans to host an ARM Mac event in November, launching its new in-house designed ARM-powered Macs...

D-Link Security Flaw Identified: Do you need a new Router?

Fortinet Labs have recently uncovered that many D-Link routers have a security flaw that is not going to be patched, this leaves the routers vulnerable open for attackers to be able to perform remote code execution with root privileges.  In a statement, they said, "We...

Windows 7 attacks rise 71%

A report published by security company Webroot has shown a massive increase in infections on systems running Windows 7. The mid-year update of the Webroot Threat Platform shows that since 2018 Windows 7 exploits have risen by 71% and that the number of IP hosts have...

Join Our Newsletter

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque

Stay Up to Date With The Latest News & Updates