I've noticed on some test computers that RDP brute force attempts are on the rise, and I've heard from some individuals that they were hacked and ransomware was run on their systems. I've noticed it on a few of my test systems too, after having RDP over WAN enabled for months, it's just started in the past week to last couple days. So, there must be new IP scan-and-hack campaigns running out there designed to look for open RDP ports. I don't even use standard RDP ports, but there are many attempts at getting access through RDP from numerous IP addresses at a time. The attackers must be using port scanners and trying all open ports with RDP brute force methods.
I wish there was some good network monitor and/or security health check option that would scan for this. I've heard about Glasswire before, which looks fairly simple to use, but is also heavily advertised on YouTube tech videos so wondering about the quality of it (I tend to stay away from products where the company has a huge advertising budget, especially for blogs and the like). Is it a decent program, or just over-hyped? And can you suggest anything similar? And something that won't conflict with Emsisoft? I kinda wish there was there was a first-party tool from Emsi for analyzing security attack points on a system or network, especially considering that they are going hand-in-hand with ransomware and other malware injections.