A diminutive cluster of servers has managed, in a matter of mere hours, to redraw the conventional cartography of internet reconnaissance. According to data from GreyNoise, a scant twenty-one IP addresses orchestrated nearly half...
Since the beginning of October, GreyNoise analysts have been tracking one of the largest and most coordinated waves of attacks targeting remote access services across the United States. According to their findings, since October...
GreyNoise has observed a sharp and highly atypical surge in reconnaissance activity targeting Microsoft Remote Desktop Web Access and the RDP Web Client: 1,971 unique IP addresses were active simultaneously, whereas the company typically...
ExpressVPN has resolved a vulnerability in its Windows client that allowed Remote Desktop Protocol (RDP) connections to bypass the VPN tunnel, thereby exposing users’ real IP addresses. The issue affected versions 12.97 through 12.101.0.2-beta...
