During the course of January to December 2023, Kaspersky’s B2B products successfully blocked a total of 61,374,948 Bruteforce.Generic.RDP.* attacks targeting businesses in Southeast Asia.
These attacks involve systematically trying all possible password combinations to gain unauthorized access to systems.
The highest number of attacks were recorded in Vietnam, Indonesia, and Thailand, with Singapore, the Philippines, and Malaysia also experiencing significant numbers of incidents.
Row Labels | 2023 |
Indonesia | 11,703,925 |
Malaysia | 2,810,648 |
Philippines | 4,620,264 |
Singapore | 6,059,867 |
Thailand | 10,205,819 |
Vietnam | 25,974,425 |
“Bruteforce attack is not a threat companies should ignore. The use of third-party services for data exchange, employees working on home computers, and potentially insecure Wi-Fi networks, and the use of remote-access tools like RDP remain to be a headache for corporate infosec teams,” explains Adrian Hia, Managing Director for Asia Pacific at Kaspersky.
If you use RDP in your work, be sure to take all possible protection measures:
· At the very least, use strong passwords.
· Make RDP available only through a corporate VPN.
· Use Network Level Authentication (NLA).
· If possible, enable two-factor authentication.
· If you don’t use RDP, disable it and close port 3389.
· Use a reliable security solution like Kaspersky Endpoint Security for Business.
Companies are also encouraged to take a step further when it comes to defending their security perimeters. Kaspersky has an integrated software solution that includes a set of functions for event monitoring and management, Kaspersky Unified Monitoring and Analysis Platform (KUMA).
A unified console for monitoring and analysing information security incidents, KUMA can be used as a log management system and as a full-fledged SIEM system.