February 8th, 2012
It is not uncommon for office based computer users to lock their desktop at the end of the working day, instead of shutting it down, maybe just force of habit from bygone days of long logon times. If they are using a Windows domain joined desktop, this poses a problem, because only they can unlock it again and so the desktop is rendered unusable by other users.
- December 14th, 2012
A recent whitepaper published by Microsoft describes an attack known as Pass-the-Hash (PtH), which has become a common attack vector for credential theft. A PtH attack is where an attacker captures account logon credentials, but instead of capturing the clear text password, the attacker captures the password hash, which can then be re-used to logon to network services, because the password hash is an unsalted MD4 hash.
I’m not going to go into too much depth in this post, as the whitepaper provides comprehensive information on these attacks, which I highly recommend you read – Mitigating Pass-the-Hash (PtH) Attacks and Other Credential Theft Techniques