Windows challenge-response authentication protocol could be abused by PC hackers to easily access wider corporate networks.
Beware of an attack that uses modified shortcut icons to trick Windows machines into sharing their network-access rights with a hacked PC.
That warning was sounded Tuesday by researchers at endpoint security vendor Imperva, who said they've discovered a way to poison Windows folders and gain the access rights of anyone who browses to that folder. The hack involves exploiting a relaying feature in Microsoft NT LAN Manager (NTLM), which is a widely used Windows challenge-response authentication protocol.
Full Article
Sneaky Windows Folder Poisoning Attack Steals Access Rights
Userlevel 7
+54
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.