Legacy Windows Protocols Still Expose Networks to Credential Theft
Legacy Windows protocols continue to expose organizations to credential theft, according to a new cybersecurity study by Resecurity.
The research found that attackers can capture login data simply by being on the same local network as their targets, without exploiting software vulnerabilities.
Vulnerable Protocols
Link-Local Multicast Name Resolution (LLMNR) and its predecessor, NetBIOS Name Service (NBT-NS), are designed to help Windows systems find other devices when DNS lookups fail.
- LLMNR
- NetBIOS Name Service (NBT-NS)
However, these protocols trust any device that responds to their requests, allowing attackers to impersonate legitimate systems.
Attackers can use tools such as Responder to intercept these broadcasts and trick a victim machine into sending authentication data.
Author's summary: Legacy Windows protocols expose networks to credential theft.
More News
- 'A strike is imminent': SEPTA's largest workers union poised to hit picket lines
- Breaking down the Week 14 Dolphins inactive info: Good news all around
- CNN: News and Updates
- Drillship to spark imminent Ivory Coast exploration campaign
- IN PICTURES: Penguins queue in Paris zoo for their bird flu jabs
- Did Susan Dell get facelift? Photo of Dell CEO’s wife sparks speculation amid Trump account donation announcement
- B.C. peacocks spared from avian flu cull
- Navjot Singh Sidhu CM-face remark and political comeback
- “The Night Agent” Season 3 Release Date
- Michael and Susan Dell to fund Trump accounts by giving $250 apiece to 25 million U.S. kids