Windows credentials can be stolen through Windows 10 themes

Tuesday, September 8th, 2020

Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.

Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.

Read the latest research blogs from the Blueliv Labs team.

Cyber Threats

Intelligence Briefing

Windows credentials can be stolen through Windows 10 themes

This weekend a security researcher revealed that specially crafted Windows themes could be used to perform Pass-the-Hash attacks. Pass-the-Hash attacks are used to steal Windows login names and password hashes by tricking a user into accessing a remote SMB share that requires authentication. When trying to access the remote resource, Windows will automatically try to login to the remote system by sending the Windows user's login name and an NTLM hash of their password. In a Pass-the-Hash attack, the sent credentials are harvested by the attackers, who then attempt to dehash the password to access the visitors' login name and password. Learn more >

Blueliv Intelligence Briefing

Your cybersecurity news summary

Cyber Threats

Intelligence Briefing

Blueliv Intelligence Briefing

Your cybersecurity news summary

Cyber Threats Intelligence Briefing

Cyber Threats

Intelligence Briefing