Perch Data Backs Up Coronavirus-Themed Cyber Attack Activity

To back up the scam reports in today’s campaigns at-a-glance post, community intelligence and network monitoring firm (and WaterISAC partner) Perch Security offers some data to highlight the security impact and to what degree threat actors are trying to capitalize from an exploding remote workforce. Perch took a peek at full RDP (remote desktop)-based activity from its entire customer base over a 90-day period to validate or debunk its theory. According to Perch, the data revealed a swell in all RDP-based attack activity over the course of 90 days, with a spike toward the end of March. Next, it investigated the trends across RDP attack types throughout February and March to evaluate variations in attack techniques. Notably, they saw a significant increase in RDP connection attempts, with a grand total of 11,858,583 inbound RDP connection attempts in February alone. March saw a 259% growth in RDP traffic (increase of 30.7 million) for a grand total of 42.5 million sessions. Perch subscribers can see COVID-19 related activity for their own organizations through the COVID-19 Dashboard and Visualization found in the new Perch Collection Marketplace in the Perch Security portal. Read more about the findings at Perch Security