Windows PetitPotam attacks can be blocked using new method

2 August 2021

Security researchers have devised a way to block the recently disclosed PetitPotam attack vector that allows hackers to take control of a Windows domain controller easily. Last month, security researcher GILLES Lionel disclosed a new method called PetitPotam that forces a Windows machine, including a Windows domain controller, to authenticate against a threat actor’s malicious NTLM relay server using the Microsoft Encrypting File System Remote Protocol (EFSRPC).

Read full article on Bleeping Computer

Date:

2 August 2021

Categorie(s):

NEWS

Tag(s):

IT, Microsoft, OS, PetitPotam, Windows

Review: The M4 iPad Pro — an amazing AI PC17 May 2024
How ID Scanning Apps Can Prevent Fraud17 May 2024
Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking17 May 2024
CISA official Eric Goldstein to step down next month17 May 2024
Arrests made in North Korean remote job scam targeting US firms17 May 2024