With the ongoing battle against the pandemic, the remote working continues to come with new security risks and threats against companies and employees. One of the most common was attacks against the protocols used by employees to access corporate resources remotely. Kaspersky reports that Saudi Arabia saw more than 22.5 million brute force attacks in 2020, on Remote Desktop Protocols (RDPs). According to Kaspersky’s telemetry, when Saudi Arabia announced restrictions early 2020, the total number of brute force attacks against RDP jumped from 983,512 in February to 2 million in March 2020 —a significant increase of 104%.
Kaspersky experts noted that these attacks are seeing an upward trajectory in Saudi Arabia with attacks reaching 7 million in January and February 2021 combined. RDP is the most popular remote desktop protocol and is used to access Windows or servers. After the switch to remote work, brute force attacks against this protocol skyrocketed reaching 3.56 billion attacks globally.
Total number of brute force attacks against RDP from February 2020-February 2021
While RDP attacks are on the rise, a recent Kaspersky survey revealed that in addition to the concerns associated with remote working, 83% of employees in the Middle East, Turkey & Africa (META) region never want to return to pre-pandemic, traditional work paradigms. This goes to show that cybercriminals will continue to attack, making it vital for companies to protect their remote workforce. Refining security measures should be taken as a serious task and is an important step for organizations, big and small.
While the pandemic might have changed the way we work, it has also provided an opportunity for individuals to explore more. 68% of employees in the META region see the significance of retaining or upskilling their capabilities to perform better in their existing jobs or possibly look at a career change. The report reveals that more than half (57%) of employees believe that technology skills are the most important to develop. While technical skills are important, so are cybersecurity skills. The first line of defense for any organization is its employees, which is why they need to be equipped with the best security skills.
“Remote work is here to stay. Even as organizations begin considering re-opening their workplaces, many will continue to include remote work as part of their operating model or even combine working from home and the office in a hybrid format. That means it’s likely these types of attacks against remote desktop protocols will continue to occur at a rather high rate. 2020 made it clear that organizations need to enhance their security measures, and a good place to start is providing stronger protection for their RDP access,” comments Emad Haffar, Head of Technical Experts at Kaspersky.
Read more about the biggest evolutions in the threat landscape since the pandemic began on Securelist.
To keep your company safe from brute force attacks, Kaspersky experts recommend:
Enable access to RDP through a corporate VPN
Enable the use of Network Level Authentication (NLA) when connecting remotely.
If possible, enable multi-factor authentication
Use corporate security solution empowered with network threat protection such as Kaspersky Endpoint Security for Business
Organizations can use the Kaspersky Automated Security Awareness Platform, which builds concrete cyber-hygiene skills and practices.