During the last few days, a large increase in traffic has been detected through port 3389, and in this post we will see why. A new worm has been spreading through the Windows Remote Desktop Protocol (RDP), exploiting those weak passwords that some users or administrators may use. The RDP protocol was developed by Microsoft and allows connections to remote desktops.In addition to the methodology implemented by this worm for p
...