Windows security update blocks PetitPotam NTLM relay attacks

10 August 2021

Microsoft has released security updates that block the PetitPotam NTLM relay attack that allows a threat actor to take over a Windows domain. In July, security researcher GILLES Lionel, aka Topotam, disclosed a new method called PetitPotam that forces a domain controller to authenticate against a threat actor’s server using the MS-EFSRPC API functions.

Read full article on Bleeping Computer

Date:

10 August 2021

Categorie(s):

NEWS

Tag(s):

IT, NTLM, OS, PetitPotam, Windows

North Korea’s Lazarus observed testing new macOS trojan in the wild14 November 2024
NSO – not government clients – operates its spyware, legal documents reveal14 November 2024
A Look at New Forms of Marketing and How to Implement Them14 November 2024
Cybercriminal devoid of boundaries gets 10-year prison sentence14 November 2024
These 8 Apps on Google Play Store Contain Android/FakeApp Trojan14 November 2024