Attackers Continue To Exploit Microsoft Vulnerability, Access Insecurely Stored Passwords
Passwords stored in Microsoft’s Group Policy Preferences may be insecurely stored due to incomplete implementations of Microsoft Security Bulletin MS14-025, the U.S. Computer Emergency Readiness Team said in an alert Friday. U.S.-CERT said that if administrators haven’t cleared previously stored…
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
passwords, the system may be vulnerable to exploitation. Attackers “may decrypt these passwords and use them to gain escalated privileges,” the alert said. U.S.-CERT recommends administrators employ the PowerShell script provided in Microsoft Knowledge Base Article 2962486 and follow the instructions to clear all “CPassword” preferences.