温馨提示:本站仅提供公开网络链接索引服务,不存储、不篡改任何第三方内容,所有内容版权归原作者所有
AI智能索引来源:http://www.1e.com/blogs/mitigating-the-risks-of-rdp-as-an-attack-vector
点击访问原文链接

Mitigating the risks of RDP as an attack vector using 1E Tachyon

Mitigating the risks of RDP as an attack vector using 1E TachyonSolutionsPlatformPricingResourcesCustomersAboutTake a TourTeamViewer DEX Helps withFrictionless ExperienceEnsures a smooth and uninterrupted digital experience for employees, minimizing frustrations and unnecessary disruptions.
Seamless IT OperationsOptimize processes with enhanced visibility and automation, driving proactive remediations, exceptional service, and reduced costs.
Real-Time Service Desk Troubleshooting & ResolutionResolve IT issues proactively and in real-time to reduce service desk incidents, minimize downtime, and maintain smooth, efficient operations.
Autonomous Digital Experience ManagementIdentify, notify, and fix compliance drift, digital friction, and end-user frustration issues.
TeamViewer DEX forMicrosoft IntuneLightweight, always-on communication, real-time actions, and automated client health remediation,
Device RefreshOptimize hardware spend while facilitating proactive hardware asset management
Software ReclaimGain clear insights into software usage and reclaim underused, redundant, or vulnerable software.
Core CapabilitiesIntelligenceBusiness ImpactExperience AnalyticsEndpoint TroubleshootingEmployee SentimentEndpoint AutomationApplication Experience Management (AXM)Content Distribution for Microsoft Configuration ManagerInventory InsightsPatch InsightsSynthetic MonitoringAdd-ons and ExtensionsAutomated Self Service for ServiceNowService Desk Augmentation for ServiceNowVirtual Desktop Experience (VDX)TeamViewer DEX PlatformHelps IT teams improve end user experience, tighten security, reduce costs, and evolve IT Operations from cost center to strategic enabler.
Platform overviewPlatform TourResource LibraryDig into original DEX analysis, case studies, on-demand webinars, and more.
BlogsBe a DEX leader with useful strategies, how-to guides, and fresh platform updates.
Use CasesSelect your specific use cases to see demo videos narrated by product experts.
DEX GlossaryUnderstanding key terms and concepts related to Digital Employee Experience.
Other ResourcesDEX HubRemediation Hub1E ExchangeDocumentationSupportTrainingWhat is Digital Employee Experience (DEX)?From the software and hardware used each day to IT interactions, DEX is the total of all digital touchpoints an employee encounters at work.
Guide to DEXRemediation hubOur CustomersDEX ROIProfessional ServicesTrust, Security, and ComplianceFederalCustomer Resources1E ExchangeDocumentationSupportTraining1Engage CommunityCustomer SuccessHow Britain’s Favorite Retailer has transformed endpoint management across more than 1,000 stores with 1E
Read case studyCompany OverviewPartnersEvents and WebinarsCareersNewsroomCSRContactAbout 1EAt 1E, we reimagine how technology serves people and create new ways for IT to shape the future of work.
Company Overview November 3, 2020Jason KeoghMitigating the risks of RDP as an attack vectorSurprisingly, RDP is responsible for more Ransomware than Phishing. In this Tachyon Tuesday blog, we explore how Tachyon mitigates the security risk of RDP in an organization.
Tachyon, strictly speaking, is a platform of capabilities. It isn’t an “Ops” tool or a “Security” tool—it’s a platform that has a ton of capabilities, which in turn provide for many endpoint management functions that provide customer value. That value may be in the form of increased security, and/or easier faster IT operations, and/or improved end-user experience.
One of the key features of Tachyon is its real-time nature. Being able to have an endpoint perform an action in the blink of an eye makes for some interesting use cases.
I recently stumbled across this graph, from a recent report by Anti-Malware player Coveware:

I knew from previous analysis in the Verizon DBIR report that RDP was a super prevalent attack vector – but I never would have expected it to be responsible for more Ransomware than Phishing!

Mitigating the risks of RDP with Tachyon I’ve covered this before in 2017 and in 2018. Leaving RDP open all the time is a bad idea and it isn’t needed any more. You can access a device, on-demand, in real-time, using RDP, even if that device wasn’t running RDP 5 seconds ago.
To put that another way: you can disable RDP, ergo mitigating the risks it poses and still use it. That may sound like an oxymoron (use the disabled protocol) but the difference is Tachyon.
With Tachyon, you can enable the protocol in real-time, and indeed enable functions like admin rights, also in real time, when you need them; even a second before you make connection to the box (or during the same second!).

But there’s also another way… One of our customers (with 28,000 endpoints in the electronics world), let’s call him “Mark”, once told me that they felt like a failure if they had to RDP into a machine now. The reason is twofold:

Tachyon allows you to do SO many different things on an endpoint, that your need to RDP into devices becomes minimal If there was something that Mark wanted to do which wasn’t already there, they took the 5 minutes to create a new Tachyon instruction rather than just RDP’ing in directly. They did this so that others could perform that operation through Tachyon in future, rather than “bothering” Mark to go and RDP in again in future. When you create a Tachyon instruction for something, others can execute it with ease in future – creating ever fewer reasons to NEED to RDP into a device.
You can see some videos in the 2017 and 2018 blog posts linked above. In the next blog in this series, I’ll show you how this has been improved over the past few years and how several customers are using Tachyon today to mitigate against the risks RDP poses, while still using everyone’s favorite Remote Desktop Protocol… but hopefully less and less often as automation increases!

Jason KeoghJason is the VP of Solutions at 1E, where he helps IT leaders leverage the 1E Platform to solve the problems that plague them, whether that’s relating to DEX, the digital workplace, or cyber security. Since joining 1E in 2014, Jason has held leadership roles, including VP of Product and Field CTO. He now leads a team focused on delivering innovative solutions to strategic partners and customers.
A recognized authority in IT Asset Management (ITAM) and Information Security, Jason represents Ireland on several ISO subcommittees and serves as an editor for key ISO standards, including IT Asset Management (19770) and Information Security (27000). He regularly speaks at international conferences on DEX.
Jason’s key areas of interest include AI and Low-Code solutions, IT Asset Management, and the evolving intersection of digital workplace technologies and cybersecurity.
More from JasonRelated PostsDigital Employee Experience (DEX)Be a Remediation Powerhouse: Fix Issues at Scale and in Real Time1E2 Min read
Product tipsElevating Communication for Enhanced User Experiences with 1EAlix Webb4 Min read
Product tipsImproving Startup Time with 1E: Group Policy ObjectsCarter Zielinski3 Min read
AboutCompany OverviewPartnersFederalEvents and WebinarsCareersNewsroomPricingContactCompareTeamViewer DEX vs LakesideTeamViewer DEX vs NexthinkTeamViewer DEX vs TaniumPlatform TeamViewer DEX PlatformIntelligenceBusiness ImpactEmployee SentimentEndpoint AutomationEndpoint TroubleshootingExperience AnalyticsInventory InsightsPatch InsightsSynthetic MonitoringApplication Experience ManagementContent Distribution for Microsoft Configuration ManagerAutomated Self Service for ServiceNowService Desk Augmentation for ServiceNowVirtual Desktop Experience (VDX)TeamViewer Tensor + TeamViewer DEX Platform IntegrationSolutions Frictionless ExperienceSeamless IT OperationsMicrosoft IntuneDevice RefreshSoftware ReclaimResourcesResource LibraryBlogUse CasesDEX GuideDEX GlossaryRemediation, Automation, and DEX content hub1E ExchangeDocumentationSupportTrainingCopyright © 1E 2026 All Rights Reserved
PrivacyTerms and ConditionsCookies Policy

智能索引记录