Abuse Melding

Je hebt een klacht over de onderstaande posting:

26-07-2021, 16:44 door Anoniem

Let op, de mitigatie is niet geheel voldoende.... het gaat ook wat verder dan alleen die ADCS: https://www.bleepingcomputer.com/news/security/microsoft-shares-mitigations-for-new-petitpotam-ntlm-relay-attack/ "Microsoft's advisory is clear about the action to prevent NTLM relay attacks but does not address the abuse of the MS-EFSRPC API, which would need a security update to fix. Gilles Lionel told BleepingComputer that PetitPotam allows other atacks, such as a downgrading attack to NTLMv1 that uses the Data Encryption Standard (DES) - an insecure algorithm due to its short, 56-bit key generation that makes it easy to recover a password hash. One example, Gilles Lionel told BleepingComputer, is a downgrading attack to NTLMv1 that uses the Data Encryption Standard (DES) - an insecure algorithm due to its short, 56-bit key generation that makes it easy to recover a password hash. An attacker can then use the account on machines where it has local admin privileges. Lionel says that Exchange and Microsoft ...

Beschrijf je klacht (Optioneel):

captcha