The tool typically scans ranges of IP addresses to identify systems with open RDP ports, most commonly TCP port 3389 .
Ensure all accounts use complex, unique passwords that are difficult to guess via dictionary attacks.
Add a critical second layer of security that passwords alone cannot bypass.