Ransomware-wielding gangs are continuing to target corporate networks, and experts say they’re typically breaking into victims’ networks using one of three techniques: Remote desktop protocol access or some other type of remote access; phishing emails; or malware that’s sometimes used in drive-by attacks against browsers.
However attackers gain access to a network, it’s typically a prelude to infecting every system they can find with crypto-locking malware. That’s why experts say it’s essential for organizations to lock down RDP and ensure they have defenses against these attack vectors in place and tested.