Connect with us

Hi, what are you looking for?

HEADLINES

Cybercriminals persist in breaking passwords of businesses in SEA

From the period of January to December 2023, a total of 61,374,948 Bruteforce.Generic.RDP. were detected and foiled by Kaspersky B2B products installed in companies of various sizes in the region.

Kaspersky reported blocking more than 61M Bruteforce attacks eyeing businesses in Southeast Asia (SEA) last year.

From the period of January to December 2023, a total of 61,374,948 Bruteforce.Generic.RDP. were detected and foiled by Kaspersky B2B products installed in companies of various sizes in the region.

A Bruteforce attack is a method for guessing a password or an encryption key that involves systematically trying all possible combinations of characters until a correct one is found. A successful Bruteforce attack allows an attacker to obtain valid user credentials.

Remote Desktop Protocol (RDP) is Microsoft’s proprietary protocol, providing a user with a graphical interface to connect to another computer through a network. RDP is widely used by both system administrators and less-technical users to control servers and other PCs remotely.

Advertisement. Scroll to continue reading.

A Bruteforce.Generic.RDP.* attack attempts to find a valid RDP login / password pair by systematically checking all possible passwords until the correct one is found.

A successful Bruteforce.Generic.RDP.* attack allows an attacker to gain remote access to the targeted host computer.

Vietnam, Indonesia, and Thailand registered the highest number of RDP attacks last year. Meanwhile, Singapore has over six million incidents, the Philippines has almost 5 million, and Malaysia with the lowest number of nearly three million Bruteforce attempts.

Row Labels2023
indonesia11,703,925
malaysia2,810,648
philippines4,620,264
singapore6,059,867
thailand10,205,819
viet nam25,974,425
Grand total61374948

“Bruteforce attack is not a threat companies should ignore. The use of third-party services for data exchange, employees working on home computers, and potentially insecure Wi-Fi networks, and the use of remote-access tools like RDP remain to be a headache for corporate infosec teams,” explains Adrian Hia, Managing Director for Asia Pacific at Kaspersky.

“We cannot discount that artificial intelligence modules and algorithms can be used to break corporate log-in and password pairs faster. And once threat actors gain remote access to your corporate computers, the possibility of financial and even reputational damage they can do becomes endless. Businesses here should beef up their endpoint and network security posture to defend themselves against smarter AI-based Bruteforce attacks,” he adds.

Advertisement. Scroll to continue reading.

If you use RDP in your work, be sure to take all possible protection measures:

·        At the very least, use strong passwords.

·        Make RDP available only through a corporate VPN.

·        Use Network Level Authentication (NLA).

·        If possible, enable two-factor authentication.

Advertisement. Scroll to continue reading.

·        If you don’t use RDP, disable it and close port 3389.

·        Use a reliable security solution like Kaspersky Endpoint Security for Business.

Companies are also encouraged to take a step further when it comes to defending their security perimeters. Kaspersky has an integrated software solution that includes a set of functions for event monitoring and management, Kaspersky Unified Monitoring and Analysis Platform (KUMA).

A unified console for monitoring and analysing information security incidents, KUMA can be used as a log management system and as a full-fledged SIEM system.

Advertisement. Scroll to continue reading.
Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

HEADLINES

In 2024, Globe blocked 3,096 child pornography domains or those containing child sexual abuse and exploitation materials (CSAEM), a slight increase from 3,047 domains restricted...

HEADLINES

During a recent webinar on Building Resilience Against Online Scams, hosted by fiber broadband and technology provider Converge ICT Solutions Inc., its Chief Executive...

HEADLINES

In 2024, Kaspersky restructured its Partner Program into four key partner types, recognizing the diverse profiles within its network – from traditional resellers and...

White Papers

The study tested 2,000 UK and US consumers, exposing them to a series of real and deepfake content. The results are alarming: only 0.1%...

HEADLINES

Deepfakes pose significant threats and risks, with nearly half of companies worldwide reporting incidents in 2024, according to industry reports. HONOR’s innovative solution immediately...

HEADLINES

The Philippines’ global ranking for local threats rose from 76th to 66th, highlighting the need for stronger cybersecurity measures.

HEADLINES

Despite 65% having adopted generative artificial intelligence (GenAI capabilities), 89% of IT leaders are concerned that flaws in GenAI cybersecurity tools could put their...

APPS

PSBank is reinforcing its commitment to security through key enhancements to its PSBank Mobile app.

Advertisement