A botnet has appeared that has attempted to brute-force 1.5 million RDP connections to Windows systems in the last few days. The GoldBrute botnet is actively scanning the internet for machines with RDP exposed, and trying out weak or reused passwords to see if it can gain access to the systems. The danger could be extensive RDP is used by tech support and IT admins to connect to and interact with machines remotely; it s also sometimes used by teleworking employees.
Source: https://threatpost.com/forget-bluekeep-beware-goldbrute/145482/