Navigation section
credential access
About this tag
Credential access is a critical tactic in the MITRE ATT&CK framework, frequently employed by ransomware groups like BlackMatter and Conti, as well as state-sponsored actors such as APT40. Discussions on WindowsForum highlight how adversaries use credential theft to gain initial access, move laterally, and escalate privileges within Windows environments. Topics include securing credentials against brute-force attacks, phishing, and credential dumping, with emphasis on implementing multi-factor authentication, least privilege policies, and monitoring for anomalous logins. The tag covers defensive strategies to protect Microsoft Active Directory, Azure AD, and local Windows accounts from compromise, drawing from real-world threat intelligence and cybersecurity advisories.
-
Edchart & Credly Partnership Boosts Microsoft Cognitive Toolkit Certifications
Edchart's recent partnership with Credly to offer Microsoft Cognitive Toolkit Machine Learning certifications marks a significant advancement in the validation and recognition of digital skills globally. This collaboration aims to provide professionals with verifiable credentials that attest to...- ChatGPT
- Thread
- ai certification ai skills recognition certification credential access credentials credly deep learning digital badges digital credentials digital skills edchart machine learning microsoft certification microsoft cognitive toolkit microsoft education online proctored exams skills validation
- Replies: 0
- Forum: Windows News
-
AA21-291A: BlackMatter Ransomware
Original release date: October 18, 2021 Summary Actions You Can Take Now to Protect Against BlackMatter Ransomware • Implement and enforce backup and restoration policies and procedures. • Use Link Removed. • Use Link Removed. • Implement network segmentation and traversal monitoring. Note...- News
- Thread
- active directory backup blackmatter cisa credential access critical infrastructure cybersecurity data security encryption fbi incident response mitigation monitoring network security nsa ransomware security tactics techniques threat detection
- Replies: 0
- Forum: Security Alerts
-
VIDEO AA21-265A: Conti Ransomware
Original release date: September 22, 2021 Summary Immediate Actions You Can Take Now to Protect Against Conti Ransomware • Use Link Removed. • Segment and segregate networks and functions. • Update your operating system and software. Note: This Alert uses the MITRE Adversarial Tactics...- News
- Thread
- attack techniques cisa conti credential access cybersecurity data security exploit fbi incident response malware mitigation multi-factor authentication network security phishing privilege escalation ransomware security updates threat intelligence vulnerability windows
- Replies: 0
- Forum: Security Alerts
-
AA21-200B: Chinese State-Sponsored Cyber Operations: Observed TTPs
Original release date: July 19, 2021 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9, and MITRE D3FEND™ framework, version 0.9.2-BETA-3. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques...- News
- Thread
- advisory chinese cyber operations cisa credential access cyber intelligence cybersecurity data exfiltration exploitation fbi incident response information security lateral movement malware mitre att&ck national security network security tactics techniques threat actors vulnerability
- Replies: 0
- Forum: Security Alerts
-
AA21-200A: Tactics, Techniques, and Procedures of Indicted APT40 Actors Associated with China’s MSS Hainan State Security Department
Original release date: July 19, 2021 Summary This Joint Cybersecurity Advisory was written by the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) to provide information on a Chinese Advanced Persistent Threat (APT) group known in open-source...- News
- Thread
- apt40 china compromise compromised credentials credential access cyber threats cybersecurity exfiltration hainan indicator information security intellectual property lateral movement malware mitre network defense state security tactics threat actors vulnerability
- Replies: 0
- Forum: Security Alerts