Remote Desktop Protocol (RDP) is a protocol built into Windows to allow a user to remotely access their system.

Due to the pandemic, more people are working from home. Through RDP, employees working remotely can easily remote into their work computers having access to all the company resources online.

 

There are big risks with remote desktop protocol. If it's configured improperly, and the majority of the time it is, It's like leaving your front door wide open and just leaving the screen door closed to try to slow someone down from hacking into your system.

Remote desktop protocol does not have any safety measures in place to prevent someone from just guessing random usernames and passwords or gathering or using a password from the internet or the dark web, then using it against that system.

If you have remote desktop protocol open and it is publicly visible by anyone on the internet, it’s not a matter of if you’ll be attacked, it's a matter of when you're going to be attacked.

 

What can you do to protect your business from RDP attacks?

• The easiest thing that can be done is to set up a VPN (Virtual Private Network). Have employees use VPN to remote into the company's network and then use remote desktop protocol behind the VPN. That is the most secure way to use RDP.

• Review your policies and practices. Make sure they are up to current standards.

• Always keep cybersecurity in mind. Criminals are always looking to make a buck and with, especially with remote desktop protocol, it is one of the easiest ways to introduce ransomware or other malware into your networks.

 

Learn more about cybersecurity at Michigan.gov/mc3 and bbb.org.