Use of Remote Desktop Protocol in DDoS Attacks
Show in Graph
Image Description
Common Information
Type Value
UUID 48c41081-2167-4a05-b9fe-c4acb5428e48
Fingerprint 99c41b8f81b33330c4454adeda64ff4e1a16a5b217d8c81007b582bf410461ed
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 26, 2021, 8:35 p.m.
Added to db March 10, 2024, 11:27 a.m.
Last updated Aug. 31, 2024, 8:44 a.m.
Headline Use of Remote Desktop Protocol in DDoS Attacks
Title Use of Remote Desktop Protocol in DDoS Attacks
Detected Hints/Tags/Attributes 14/1/10
Source URLs
Redirection Url
Details Source https://media.cert.europa.eu/static/SecurityAdvisories/2021/CERT-EU-SA2021-005.pdf
URL Provider
Details Provider Source level domain
Details europa.eu media.cert.europa.eu
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 161 https://media.cert.europa.eu/cert/Data/newsletter/reviewlatest-SecurityBulletins.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 89 
arstechnica.com
Details Domain 61 
www.netscout.com
Details Domain 2 
www.saotn.org
Details Domain 281 
docs.microsoft.com
Details Domain 29 
www.techrepublic.com
Details Url 1 
https://arstechnica.com/information-technology/2021/01/ddosers-are-abusing-microsoft-rdp-to-
Details Url 1 
https://www.netscout.com/blog/asert/microsoft-remote-desktop-protocol-rdp-reflectionamplification
Details Url 1 
https://www.saotn.org/tunnel-rdp-through-ssh
Details Url 1 
https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients
Details Url 1 
https://www.techrepublic.com/article/how-to-better-secure-your-microsoft-remote-desktop-