The hacker known as TrueFighter has reemerged with a campaign actively targeting the Remote Desktop Protocol (RDP) across all sectors, with those in the healthcare industry as the most popular (leading) target.

As you may know, RDP is Microsoft’s remote access tool used by many businesses to connect remotely to desktops and servers.

TrueFighter sells information for unspecified organizations, opting to define the source by industry. Anyone who buys these accounts would obtain remote administrative access to the compromised organization(s), leaving them mostly vulnerable to Ransomware attacks, and crippling their operations.

Telehealth and other remote patient monitoring have expanded amid COVID-19, increasing the need for remote access technologies like RDP and Virtual Private Networks (VPNs).

Review your remote access security measures with your IT team or company to ensure your organization is properly protected. Always know who has remote access (list of users), how the list is kept up to date, how often passwords are required to change, passwords are complex, and most importantly, whether multi-factor authentication is set up to keep hackers from penetrating the network.

Security and compliance are first and foremost in the management of our clients' systems. After conducting thousands of SRAs, common vulnerabilities began to emerge. We launched HIPAA Tip Tuesday to make clients aware of what actions they can take to address these vulnerabilities.

Have a great week!