credential dumping

About this tag
Credential dumping is a technique used by threat actors to extract authentication credentials from compromised systems. On WindowsForum.com, discussions cover real-world examples such as the AA20-107A alert, which details how attackers exploited Pulse Secure VPN vulnerabilities to perform credential dumping and other post-exploitation activities. The MITRE ATT&CK framework is referenced to classify these techniques and provide mitigation guidance. Topics include enterprise security, threat actor tactics, and steps to protect against credential theft following VPN patching. Users share insights on detecting and preventing credential dumping in Windows environments.
  1. News

    AA20-107A: Continued Threat Actor Exploitation Post Pulse Secure VPN Patching

    Original release date: April 16, 2020 | Last revised: June 30, 2020 Summary Note: This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework. See the ATT&CK for Enterprise framework for all referenced threat actor techniques and mitigations...
Back
Top