The Microsoft Platform: New worm (Morto.A) targeting weak passwords on Remote Desktop connections (port 3389)

Monday, August 29, 2011

New worm (Morto.A) targeting weak passwords on Remote Desktop connections (port 3389)

There is a new worm out there that spreads by targettting weak passords on Remote Desktop Connections.

Win32/Morto.A is a worm that allows unauthorized access to an affected computer. It spreads by trying to compromise administrator passwords for Remote Desktop connections on a network.

Aliases
Trojan horse Generic24.OJQ (AVG)
Trojan.DownLoader4.48720 (Dr.Web)
Win-Trojan/Helpagent.7184 (AhnLab)
Troj/Agent-TEE (Sophos)

Details:
http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Worm%3aWin32%2fMorto.A

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Freek Berson

Microsoft MVP on Remote Desktop Services
Since 2011
Freek Berson: Freek Berson is a frequent speaker at conferences and meetups around the world and has been a Microsoft MVP since 2011. He authored the book “Getting started with Bicep”, co-authored “RDS – The Complete Guide”, and published the e-books “Azure Virtual Desktop Handbook: Security Fundamentals” and “Azure Virtual Desktop Migration Guide for Remote Desktop Services”. He works at Corel as an evangelist and Outbound Product Manager for the Parallels team with a focus on Parallels RAS and Cloud solutions for virtual applications and desktop delivery. You can follow him on twitter via @fberson.
Twitter
E-mail
LinkedIn
MVP Profile
TechNet Profile