A serious vulnerability in the popular RDP protocol can leave machines exposed to an attack that will allow a remote person full control. Be aware that AWS is notorious for allowing access to RDP and so I've included a script to help check.