Barney's Blog

Blog archive

Worm Slithers Across RDP

"Morto" is the weird name of a recently discovered worm that runs across Remote Desktop Protocol (RDP). The worm is installed through a rogue Windows DLL, traverses RDP and tries to figure out your password and login.

It is not the most powerful password cracker -- if you have a complex password, you should be set. But those dummies with simple passwords such as admin could be in trouble, as Morto tries to break in using around 30 of the most common passwords.

If the worm gets in, the slimy creature shuts off your security software. F-Secure is the firm that found the worm and it believes the aim of Morto is to ultimately launch denial-of-service (DoS) attacks.

Posted by Doug Barney on 08/31/2011 at 1:18 PM


Featured

  • Industrial Control System Honeypot Illustrates Bad Security Practices

    Security solutions provider Trend Micro has published results (PDF) from running an industrial control system (ICS) "honeypot."

  • Ransomware: What It Means for Your Database Servers

    Ransomware affects databases in very specific ways. Joey describes the mechanics of a SQL Server ransomware attack, what DBAs can do to protect their systems, and what security measures they should be advocating for.

  • Windows Admin Center vs. Hyper-V Manager: What's Better for Managing VMs?

    Microsoft's preferred interface for Windows Server is Windows Admin Center, but can it really replace Hyper-V Manager for managing virtual machines? Brien compares the two management tools.

  • Microsoft Offers More Help on Windows Server 2008 Upgrades

    Microsoft this week published additional help resources for organizations stuck on Windows Server 2008, which fell out of support on Jan. 14.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.