Collaborate Disseminate
I have an internet-facing RDP server and getting constant brute force attacks trying random usernames and passwords. It’s Windows 2016 with remote desktop services enabled. What can I do to stop this attack and secure it properly?
Edit: I … Continue reading Bruteforce on RDP [duplicate]
Okta has released additional details about the security incident caused by the Lapsus$ gang, and has named the contractor involved: Sitel. What happened? “Like many SaaS providers, Okta uses several companies (‘sub-processors’) to exp… Continue reading Okta names contractor involved in Lapsus$ gang’s attack
We have blocked all direct connections from client computers to the Internet in our firewalls and only allow Internet access via http and https through a Squid proxy.
Now one of my users requests permission to use accounting software provi… Continue reading How to protect Windows Remote Desktop Client from untrusted server
The potential financial, operational, and reputational impact of ransomware makes it the top threat facing financial services organizations, according to a report from F-Secure. Phishing, exposed remote desktop protocol (RDP) ports, and the exploitatio… Continue reading Top threats for the financial sector
Microsoft marks March 2022 Patch Tuesday with patches for 71 CVE-numbered vulnerabilities, including three previously unknown “critical” ones and three “important” ones that were already public (but not actively exploited by att… Continue reading March 2022 Patch Tuesday: Microsoft fixes RCEs in RDP client, Exchange Server
In this interview with Help Net Security, Alissa Knight, cybersecurity influencer and partner at Knight Ink, explains why organizations should switch to SDP as opposed to VPN, and how this approach can help boost their cybersecurity posture. As the pan… Continue reading SDP solutions are true ZTNA solutions: They trust no one
I am connecting to a fedora xrdp server from the built-in Windows Remote Desktop client.
I have access to the /etc/xrdp/key.pem and to the certificate inspection window on on Windows Remote Desktop
In this case I am connecting to a local … Continue reading How can I check the validity of a selfsigned xrdp certificate
For my project, we need to image our phones, in my case, an iPhone. The problem is that we have Magnet AXIOM licenses that only work on Windows. I have a Mac with limited disk space, so I chose a Microsoft Azure Windows VM with more cores … Continue reading How to image an iPhone on an Azure Windows VM? [closed]
When the Log4Shell vulnerability (CVE-2021-44228) was publicly revealed in December 2021, CISA Director Jen Easterly said that it is the “most serious” vulnerability she has seen in her decades-long career and it could take years to address. It’s… Continue reading Log4j exploitation risk is not as high as first thought, cyber MGA says
To facilitate consulting work, a client has suggested that they allow me to connect directly to an in-house remote desktop server, via a firewall pinhole which allows connection from my IP address only. My IP isn’t static, but it hasn’t c… Continue reading Firewall IP-Filtered Pinhole Risks