Over 8000 VNC instances left exposed, researchers find

KEEPNET LABS > Blog > Over 8000 VNC instances left exposed, researchers find

Over 8000 VNC instances left exposed, researchers find

Researchers discovered 8,000 unprotected instances of virtual network computing. This exposed a large number of global organizations to the risk of external compromise. The bodies were managed by the critical Infrastructure organizations (CNI), which were responsible for water treatment plants, factories, and research facilities.

Aug 18, 2022 7:57 am

The researchers discovered 8,000 unprotected instances of virtual network computing, which exposed a large number of global organizations to the risk of external compromise. In fact, the bodies were managed by the critical Infrastructure organizations (CNI), which were responsible for water treatment plants, factories, and research facilities. With authentication disabled, attackers have the option to hijack certain endpoints and thus the industrial control systems to which they can connect. This is because Dec is a cross-platform screen-sharing system that allows users to remotely control another computer. Etay Maor, senior director of security strategy at Cato Networks, says: “VNCs are essentially devices, and every device needs careful maintenance, updates, and fixes. This is the same problem that he has faced for a long time. By migrating to Sase’s cloud service, organizations with critical infrastructure can maintain infrastructure without compromising service delivery. They can apply virtual patches that protect the internal infrastructure without actually updating that infrastructure.”

Virtual Network Computing

Phishing Test Software

The human factor is the weakest point in your security posture and may be used against you regardless of how secure your network, computers, and software are. Traditional security measures are insufficient to stop these attacks. Using phishing test platforms that replicate phishing attacks is an effective security measure.

Virtual Network Computing

Phishing Training for Employees

Phishing is one of the most successful ways cybercriminals access companies' passwords and other security credentials. A cybercriminal impersonates a legitimate person or entity and sends a fake email to manipulate employees. Companies need to train their employees not to click on links or attachments in suspicious emails.

Virtual Network Computing

Protect Yourself Against Keyloggers

Keyloggers are one of the most common and deadly cybersecurity threats. It is a type of malware that records keystrokes and sends them back to the cybercriminal. Hackers can access accounts, banking systems, or even bitcoin wallets thanks to keyloggers.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.