Windows RDP servers are compromised for DDoS attacks

By VARINDIA - 2021-01-23

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to bounce and amplify junk traffic as part of DDoS attacks. RDP is a part of the Microsoft Windows OS that provides authenticated remote virtual desktop infrastructure (VDI) access to Windows-based workstations and servers. System administrators can configure RDP to run on TCP port 3389 and/or UDP port 3389.

Attackers can send the amplified attack traffic, which is comprised of non-fragmented UDP packets that originate at UDP port 3389, to target a particular IP address and UDP port of choice, researchers said.

As per Netscout, attackers can send malformed UDP packets to the UDP ports of RDP servers that will be reflected to the target of a DDoS attack, amplified in size, resulting in junk traffic hitting the target's system and it allows attackers with access to limited resources to launch large-scale DDoS attacks by amplifying junk traffic with the help of internet exposed systems.’

This is what security researchers call a DDoS amplification factor, and it allows attackers with access to limited resources to launch large-scale DDoS attacks by amplifying junk traffic with the help of internet exposed systems.

Netscout is now asking system administrators who run RDP servers exposed on the internet to take systems offline, switch them to the equivalent TCP port, or put the RDP servers behind VPNs in order to limit who can interact with vulnerable systems.

Currently, Netscout said it is detecting more than 33,000 RDP servers exposed online and running on UDP port 3389.

Name:
Email:
Comment:

INTERVIEWS

'One has to be alert as cyber scamsters are always a step ahead'

"To set up two-factor authentication is one of the best practices suggested to clients"

'Good governance is essential for managing cybersecurity issues'

"It is ensured a suitable endpoint security is installed and monitored for timely updates"

"Our endeavour is to safeguard IT systems from cyber-attack and take imperative steps"

"To have strong first line of defence, employees and associates needed to educate"

TOP VIDEOS

Data scientists and Data engineers witnessing demand and growth

Mr. Bharat B Anand,Group IT Head &Security- EC Council at Panel Discussion II, Cyber and Data Security Summit 2021

Mr. Chandra Mouli,CIO & CTO-Sankara Nethalaya at Panel Discussion II, Cyber and Data Security Summit 2021

Mr. Parna Ghosh, Vice President & Group CIO-UNO Minda Group at Panel Discussion II, Cyber and Data Security Summit 2021

Mr. Rishi Mehta, Technology Evangelist- Silicon Valley (USA) at Panel Discussion II, Cyber and Data Security Summit 2021

Mr. Subroto K Panda,CIO-ANAND & ANAND at Panel Discussion II, Cyber and Data Security Summit 2021

CIO - SPEAK

VPN and privileged access management : The key technologies

Sandeep Sengupta, MD, ISOAH Data Securities Educating customers &...

Strengthening remote protocols with multiple interfaces and set up of strong local security policies within laptops can mitigate risk

Dr. Harsha E Thennarasu Chief IT & Cyber Security Advisor, HKIT Securi...

“The 'deep fake' can be well countered with the 'deep trust'”

Jaideep Khanduja Chief Technology Officer, AccioMango Pvt Ltd Educati...

Start-Up and Unicorn Ecosystem

Volocopter raises $241Million, says operations to begin in 2...

NVIDIA univels Jarvis 1.0 Beta for building real-time conver...

Pandemic will force 1.8 cr Indians to switch occupation by 2...

WhatsApp to launch display banner to speak on the privacy po...

Netmagic Strengthens Partnership with Google Cloud India

Worldwide Smartphone Sales to Grow 11% in 2021 says Gartner

"Enterprises are adopting a Hybrid Multi cloud approach to o...

"More organisations will start seeking intelligent and inten...

Headcount downsizes attributed largely due to increased auto...

Enterprises to invest in artificial intelligence, cloud tech...

SECURITY

CrowdStrike enables new capabilities to improve security operations

CrowdStrike has announced enhancements to the CrowdStrike Falcon platform that significant...

Dangerous Ryuk encrypts a network, rendering systems useless

A new version of Ryuk ransomware is equipped with an additional worm-like capability to sp...

K7 Computing introduces K7 Ultimate Security Infiniti Edition Antivirus

K7 Computing has announced the launch of K7 Ultimate Security Infiniti Edition, a limited-...

SOFTWARE

Tech Mahindra with ThoughtSpot to offer Scalable and AI-Driven Analytics

Tech Mahindra and ThoughtSpot have announced a partnership to offer AI (Artificial Intelli...

Chennai researcher awarded ₹36 lakh from Microsoft

Microsoft has awarded a Chennai-based security researcher approximately Rs 36 lakh for spo...

EverestIMS Technologies inks distribution agreement AppDistri

EverestIMS Technologies has announced a partnership with Australia based AppDistri. Everes...

START - UP

Delivery startup Instacart valued at $39 bn

The California startup into grocery business Instacart has valued more than doubled its va...

Saurabh Jain to launch his edtech startup Fun2Do Labs

Saurabh Jain Former Paytm Executive will be launching his edtech startup Fun2Do Labs. It i...

Acer launches its flagship store in Bengaluru

Acer India unveiled India’s biggest swanky new Flagship Acer Mall experience store i...

UPI AutoPay goes live on Gaana

National Payments Corporation of India (NPCI) has announced that UPI AutoPay has now gone...

SOUTHERN INDIA INFORMATION TECHNOLOGY FAIR (SIITF) -2018
BANGALURU

STAR NITE AWARDS(SNA) - 2018
NEW DELHI

ODISHA INFORMATION TECHNOLOGY FAIR(OITF)-2019
BHUBANESWAR

WESTERN INDIA INFORMATION TECHNOLOGY FAIR(WIITF) - 2019
MUMBAI

PERIPHERALS

Jabra introduces Evolve2 30, with lightweight, portable and cost-effective comfort

Jabra has announced the launch of the Jabra Evolve2 30, the latest product to join the Evo...

OPPO to unveil its Band Style

OPPO is all set to launch the OPPO Band Style, a premium product equipped with cutting-edg...

Ambrane announces two new TWS – Dots 11 and Dots 20

Ambrane has announced the launch of its TWS series – Dots 11 and Dots 20 with severa...

Streamlined fixed domes with brilliant image quality up to 4K

Axis Communications, the market leader in network video, launches new additions to the AXI...

INDUSTRY EVENTS

Addverb Technologies opens "Bot-Valley", INR 75 Cr. Robots manufacturing facility

Addverb Technologies has inaugurated its world class manufacturing facility “Bot-Val...

Micro Focus charges up for Flagship Customer Event, Micro Focus Universe 2021

Micro Focus has reinforced its ongoing commitment to help customers win in the digital eco...

World Leadership Congress recognises Kamal Nath as 'CEO of the Year'

Sify Technologies Limited (NASDAQ: SIFY), India’s most comprehensive ICT solutions p...

NetApp hosts Xcelerate 2021

NetApp has recognized its top-performing channel partners at the ‘Xcelerate 2021 par...

E- COMMERCE

Paytm leads the mobile payments market in India with 1.2B monthly transactions

The sources from Paytm says, it has processed 1.2 billion transactions in the month of Feb...

Amazon to redesign it's app icon after it comparisons to Hitler's mustache

Amazon has changed its app icon after receiving criticism that its new logo resembles with...

Walmart launches new Vriddhi e-institute to help MSMEs

Global retailer Walmart expanded its MSME-focused Vriddhi e-institute to Uttar Pradesh, st...

Salesforce gains up 20% more from last year

Salesforce shares fell as much as 4% in extended trading after the enterprise-software com...

MOVERS & SHAKERS

Honeywell Automation India appoints Ganesh Natarajan as Chairman

Honeywell Automation India Limited has announced Dr. Ganesh Natarajan’s appoint...

Ex-CFO and COO of Tata Capital, Govind Sankaranarayanan joins Cashinvoice as Board of Director

CashInvoice has announced the appointment of Govind Sankaranarayanan, founding CFO and COO...

Manu Sharma joins as the Vice President and General Manager in Nothing India

Nothing, a new forward-thinking London based consumer technology company, announced today...

Jon Robertson appointed as the as President, Asia Pacific & Japan in Snowflake

Snowflake (NYSE: SNOW), the Data Cloud company, today announced Jon Robertson will jo...

CHANNEL - BUZZ

Ingram Micro India signs distribution agreement with Numeric

Ingram Micro India announced today that it has signed a distribution agreement with Numeri...

RAH Infotech Named Distributor of the Year by Skybox Security

RAH Infotech, the specialty technology distributor of cybersecurity, data management, disa...

Subex joins O-RAN Alliance to boost the adoption of open radio access networks

Subex has announced to become a member of the O-RAN Alliance to support the development an...

KIIT selects Lenovo as official IT Solutions Partner

Lenovo has been selected by the Kalinga Institute of Industrial Technology (KIIT) as...