Virtualization Technology News and Information
Article
RSS
Specops Research Reveals Top Passwords Contributing to RDP Port Attacks
Specops Software released new research analyzing the top passwords used in live attacks against Remote Desktop Protocol (RDP) ports. This analysis coincides with the latest addition of over 34 million compromised passwords to the Specops Breached Password Protection Service, which now includes over 3 billion unique compromised passwords. 

RDP over TCP Port 3389 is a popular way to provide IT teams remote network access to remote workers. While attacks on RDP ports grew during the COVID-19 pandemic as a result of the rise of remote work, the port has continued to be a popular attack method for criminals despite many workers returning to the office. Password-related attacks continue to top the list of attack methods, with recent research finding brute force password guessing accounts for 41% of all intrusion vectors.

In an analysis of over 4.6 million passwords collected in October 2022 from Specops Software's honeypot system - one of the sources for compromised passwords blocked by Specops Password Policy and Breached Password Protection - the most common base terms found in passwords used to attack TCP Port 3389 included:

  1. Password
  2. p@ssw0rd
  3. Welcome
  4. admin
  5. Passw0rd
  6. p@ssword
  7. pa$$w0rd
  8. qwerty
  9. User
  10. test

Additionally, an analysis of port attack data including the RDP port and others revealed several password patterns, with more than 88% containing 12 characters or less, nearly 24% containing just 8 characters, and just under 19% containing only lowercase letters.

"Weak passwords continue to leave organizations vulnerable to attacks on RDP ports and other systems, but it doesn't have to be this way," said Darren James, Head of Internal IT, Specops Software. "It is imperative that organizations adopt stronger password policies, such as requiring longer passphrases, introducing length-based password aging, and blocking compromised passwords."

For more information about the research, check out the full data and analysis here.

Published Tuesday, November 15, 2022 3:48 PM by David Marshall
Filed under:
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Calendar
<November 2022>
SuMoTuWeThFrSa
303112345
6789101112
13141516171819
20212223242526
27282930123
45678910