Submitted via IRC for soycow1984
Microsoft has patched only recent versions Windows against a dangerous hack that could allow attackers to steal Windows NTLM password hashes without any user interaction.
The hack is easy to carry out and doesn't involve advanced technical skills to pull off. All the attacker needs to do is to place a malicious SCF file inside publicly accessible Windows folders.
Once the file has been placed inside the folder, it executes due to a mysterious bug, collects the target's NTLM password hash, and sends it to an attacker-configured server. Using publicly available software, an attacker could crack the NTLM password hash and later gain access to the user's computer.
Such a hack would allow an attacker that has a direct connection to a victim's network to escalate access to nearby systems.
Source: Bleeping Computer
(Score: 2) by ngarrang on Thursday November 09 2017, @01:08PM
Will changing SCF files to be associated as a text file instead of a command file break Windows badly? In theory, this would stop the file from being executed. But are there large parts of Windows depending on this functionality to be productive?