In 2020, attacks against Windows Remote Desktop Protocol (RDP) grew by 768%, according to ESET. ESET: Given its complexity, ubiquity, and position within the operating system, RDP has a large attack surface. If publicly exposed, vulnerabilities that emerge may be exploitable by hackers to cause serious damage to an enterprise. RDP needs to be well protected, and direct access should never be provided to an RDP server. Access should be guarded behind a separate service with limited privileges to prevent malicious actors from gaining admin-level access.
Source: https://www.helpnetsecurity.com/2021/05/10/windows-rdp-attacks/