Pass the Hash and Other Credential Theft - Reuse - Mitigating Risk

Explore the critical issue of credential theft and reuse in this 40-minute Black Hat USA 2013 conference talk. Delve into the widespread problem of Pass the Hash (PtH) attacks and learn about Microsoft's recommended mitigations. Gain insights from Mark Simos and Patrick Jungles, members of Microsoft's dedicated workgroup, as they discuss practical solutions for immediate implementation and future platform modifications. Discover strategies to protect privileged accounts, understand the implications of disabling NTLM, and explore new platform changes including Remote Desktop modifications. Examine the concept of Authentication Policies Silos and their role in Active Directory Authentication. Learn about LSA Protection in Windows Server 2012 and its impact on Pass the Hash attacks. Acquire valuable knowledge to enhance your organization's cybersecurity posture and mitigate the risks associated with credential theft and reuse.