Problem is these people are illegally working in a foreign country without a work visa, thus not paying taxes or actually providing to the local economy they are taking from. Purchases in starbucks don't help the entire community.

This is so crazy, RDP is not the problem, the lack of any firewall or other kind of security measure that prevents RDP, SSH and other remote connection protocols from outside the so called secure internal network to internal computers. User education is important but the scary part is that these companies that hold all this information are so vulnerable to these kind of attacks. Sim swapping is one issue but I am sure they will eventually exploit a lot of other security vulnerabilities once inside the internal network.