Microsoft RDP - Remote Desktop Protocol or Routine Darkside Probe?

[zigzag3143]

An article uploaded to Infosec Island the other day got me thinking about RDP, Microsoft's Remote Desktop Protocol. In the article, Brett Huston, who sells honeypot software, talks about the prevalence of RDP connection attempts seen in his honeynet.
He suggests that the average computer will experience around 50 RDP probes a day - one every half-an-hour - and that the crooks aren't merely looking. If you accept the connection, the guys at the other end will actively try to make use of it.

http://nakedsecurity.sophos.com/201...e-desktop-protocol-or-routine-darkside-probe/