Windows Flaw Reveals Microsoft Account Passwords, VPN Credentials
Posted by jpluimers on 2016/08/08
Attack from the ’90s resurfaces more deadly than before
Source: Windows Flaw Reveals Microsoft Account Passwords, VPN Credentials
TL;DR: block LAN->WAN port 445
Note this won’t affect web-dav shares like \live.sysinternals.com\DavWWWRoot as that uses ports 443 and 80.
–jeroen
via:
- TIL NTLM Auth is still a thing, still broken and at the core of all Microsoft properties, including Skype. And that is why we can’t have nice things. – Kristian Köhntopp – Google+
- TIL NTLM Auth is still a thing, still broken and at the core of all Microsoft properties, including Skype. And that is why we can’t have nice things. – Jeroen Wiert Pluimers – Google+
Leave a Reply