← All stories

IT Pro

Researchers warn millions of RDP and VNC servers are wide open to exploitation

Nicole Kobie · 5 days ago · Read original ↗

ATT&CK techniques detected

9 predictions

T1021.001Remote Desktop Protocol

98%

“researchers warn millions of rdp and vnc servers are wide open to exploitation researchers warn millions of rdp and vnc servers are wide open to exploitation researchers at forescout spotted millions of rdp and vnc servers exposed online remote desktop protocol ( rdp ) threats ar…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1021.001Remote Desktop Protocol

61%

“found that 19, 000 of the exposed rdp servers were vulnerable to a single exploit known as bluekeep that was discovered seven years ago. similarly, many of the exposed vnc servers had authentication disabled, meaning anyone could interact with the applications presented by the de…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1190Exploit Public-Facing Application

55%

“found that 19, 000 of the exposed rdp servers were vulnerable to a single exploit known as bluekeep that was discovered seven years ago. similarly, many of the exposed vnc servers had authentication disabled, meaning anyone could interact with the applications presented by the de…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1021.001Remote Desktop Protocol

48%

“which is increasing attack surfaces. indeed, such systems often lack the necessary authentication and authorization controls that organizations require to keep secure – and once inside, attackers gain " broad, persistent " access. millions of servers exposed the researchers used …”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1210Exploitation of Remote Services

38%

“found that 19, 000 of the exposed rdp servers were vulnerable to a single exploit known as bluekeep that was discovered seven years ago. similarly, many of the exposed vnc servers had authentication disabled, meaning anyone could interact with the applications presented by the de…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1210Exploitation of Remote Services

37%

“which is increasing attack surfaces. indeed, such systems often lack the necessary authentication and authorization controls that organizations require to keep secure – and once inside, attackers gain " broad, persistent " access. millions of servers exposed the researchers used …”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1190Exploit Public-Facing Application

34%

“which is increasing attack surfaces. indeed, such systems often lack the necessary authentication and authorization controls that organizations require to keep secure – and once inside, attackers gain " broad, persistent " access. millions of servers exposed the researchers used …”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1588.006Vulnerabilities

31%

“##es are set to top 50, 000 this year, marking a record high – here ’ s how cisos and security teams can prepare for a looming onslaught news while the cve figures might be daunting, they won ' t all be relevant to your organization - microsoft patches six zero - days targeting w…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1133External Remote Services

30%

“found that 19, 000 of the exposed rdp servers were vulnerable to a single exploit known as bluekeep that was discovered seven years ago. similarly, many of the exposed vnc servers had authentication disabled, meaning anyone could interact with the applications presented by the de…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

Researchers at Forescout spotted millions of RDP and VNC servers exposed online