"A Shodan search shows roughly 1.8 million RDP and 1.6 million VNC servers exposed on the internet, a majority in China and the United States."
"More than 19,000 RDP servers are vulnerable to the old vulnerability named BlueKeep, which has been exploited by a wide range of threat actors."
"One of the most concerning findings is that 670 of these VNC servers provide direct access to ICS/OT panels without authentication."
"Forescout pointed out that Russia-linked hackers have been known to target OT systems via VNC, as warned by government agencies in December 2025."
Research indicates that millions of RDP and VNC servers are exposed to the internet, with many linked to industrial control systems. A Shodan search revealed approximately 1.8 million RDP and 1.6 million VNC servers, primarily in China and the United States. Among these, 91,000 RDP and 29,000 VNC servers are associated with specific industries. Many exposed servers run outdated Windows versions, and a significant number lack authentication, raising security concerns, especially regarding access to cyber-physical systems.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]