: RDP should never be directly exposed to the public internet. Require users to connect via a secure Virtual Private Network (VPN) or an RDP Gateway.
: Automated scripts that crawl the internet looking for open RDP ports (typically port 3389) that lack proper protection. The Consequences of a Breach RDP Cracking Tools.zip
: Set the system to automatically lock an account after a small number of failed login attempts to thwart automated guessing tools. : RDP should never be directly exposed to