A Kaspersky investigation would claim that there was a 147% increase in PSW Trojans or software to steal passwords. While this explosive rise took place in Nigeria, it should not be a matter of concern to the rest of the world.
This figure refers to the first quarter of 2022, and So far this year, 2,654 attacks have already been detected. This indicates a large increase compared to last year where there were 1,076 cases.
Secondly, the companies affected by these attacks would have one factor in common, being small and medium-sized companies. If cybersecurity is already a challenge for large companies, it is something much more delicate for small and medium-sized ones. Since they do not have an annual budget or action plans in case of this type of attack.
What method did they use to attack and steal passwords?
Due to the pandemic and the rise of teleworking, it has become necessary to allow remote connections from the homes of each collaborator. This made it easier for cybercriminals to gain access through remote desktop protocol attacks. Which would also indicate an increase in this type of attack by 89% in 2022.
Also, RDP attacks (Remote Desktop Protocol) that were detected and blocked in the first four months of each year had a noticeable increase. Being 161,000 in 2021 and 303,500 in 2022.
What can we do to prevent these attacks?
- First of all, it is necessary to evaluate if it is really necessary to enable remote access to our computers (RDP).
- Only grant access to those who really need it and have limited control.
- Grant access via IP.
- Use strong passwords.
- Combine the remote connection with the use of VPN.
- Use of firewall.
Do you work remotely? Is your connection secure?
Source: Giz China