Remote Desktop Protocol (RDP) are a fast-increasing attack vector to enterprise networks, due to the fact that corona made employees move their workstations from their offices to their home, which decreased the security normally implemented. Windows uses Remote Desktop Protocol (RPD) for remote connection to a server, as when employees are working from different locations, […]
Syspeace’s server protection is an anti-hacking software, for brute force attacks specifically. The Syspeace system is a Host-based Intrusion Detection and Prevention System (HIDPS). Simply meaning that it reasons about the pattern of failed login attempts and sequentially blocks the attacker once it can discern the attack from a legitimate user logging in incorrectly. So what are […]
Syspeace 3.1 is now available and introduces a new feature called Remote Status to let you see the status of Syspeace services remotely, as well as improved support for automatically deploying Syspeace. Using the new Syspeace Remote Status Console application (available free of charge), Syspeace users are able to link one or more Syspeace accounts. […]
Update to Syspeace 2.7.0! We highly recommend it. Why? It introduces improved support for detecting RDP login failures where the IP addresses are missing in the event log entries. For details, see the separate post A comprehensive approach to detecting RDP login failures. It includes a setting to mitigate repetitive “success” login entries on file […]
The current major release of Syspeace (2.x) continues to be supported on Windows Server 2003 and Windows Server 2003 R2. We may introduce major new releases of Syspeace. They will not run or be supported on Windows Server 2003 and Windows Server 2003 R2. Microsoft’s extended support for Windows Server 2003 and Windows Server 2003 R2 ended […]
Recently, the SSL certificate used for syspeace.com, the Syspeace Licenses site as well as backend Syspeace services was reissued with a signature using the SHA-2 hash algorithm. The SHA-2 hash algorithm replaces the earlier, deprecated SHA-1 and moving forward is recommended by the CA Security Council. However, some users on Windows Server 2003 have seen […]
In what scenarios Syspeace is useful for preventing brute force attacks? Do I need it if I’ve only got a Windows workstation? These are questions we have answers on. Syspeace is an intrusion prevention software and works with Windows Servers and senses bad logins to other Windows accounts such as Sharepoint, OWA, Exchange Server SMTP […]
Protection from brute force attempts on Windows servers has always been a nightmare and would continue to be so if not .. Yes, I admit, I will come up with a solution further down. Most system administrators with selfrespect start off with the best of intentions to actually keep track of brute force / dictianary […]
Anything facing the Internet is a potential target for anyone who wants to gain access or disrupt your data operations. If it is here, people will try to get in or make it stop working. That is just the way it is, and I am sure you are aware of it. There are different methods for […]
We had a look at the number the other day and since July 15:th we have successfully helped system administrators avoid over 175 000 brute force attempts on Windows servers worldwide! One of the key features in Syspeace is the GBL (Global Blacklist) that automatically analyzes and weighs every attack on every Syspeace installation and […]