Comments
Microsoft Office 365 Users Targeted in Brute Force Attacks
Newest First  |  Oldest First  |  Threaded View
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
7/24/2017 | 1:44:02 PM
Re: Password Policy
"... construct great combinations using these terms in totally unique ways"

This makes sense. They just need to use some special characters to make it complex.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
7/24/2017 | 1:42:47 PM
Re: Password Policy
HOBBIES?

I never heard that. Anything in dictionary does not need any brute force, it could be cracked in seconds.
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
7/24/2017 | 1:41:10 PM
Re: Password Policy
"it is still difficult to perform a brute force because of the time"

That is true. Or just a complex password, it is still not easy to crack via brute force. 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
7/24/2017 | 1:39:52 PM
Re: Password Policy
"This is where password policy becomes helpful"

That is true. Number of trials and locking for example.

 
Dr.T
50%
50%
Dr.T,
User Rank: Ninja
7/24/2017 | 1:37:49 PM
early this year?
 

Has this happened earlier this year and we are just hearing it. That is interesting. I wonder if any success out of those attacks.
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
7/21/2017 | 9:14:02 AM
Re: Password Policy
When I was supporting small business and home users before moving to Georgia, my recommendation (still holds true) is for users to make passwords out of HOBBIES.  All of us have unique interests that we remember well and can construct great combinations using these terms in totally unique ways.  Very secure.
RyanSepe
100%
0%
RyanSepe,
User Rank: Ninja
7/20/2017 | 11:25:25 PM
Password Policy
This is where password policy becomes helpful. Using a low and slow methodolgy will make it more likely to stay under the radar; but with enforced complexity, scheduled change, and lockout mechanisms it is still difficult to perform a brute force because of the time it would take to crack an account using this method.


Why CISOs Need a Security Reality Check
Joel Fulton, Chief Information Security Officer for Splunk,  6/13/2018
Cisco Talos Summit: Network Defenders Not Serious Enough About Attacks
Curtis Franklin Jr., Senior Editor at Dark Reading,  6/13/2018
Four Faces of Fraud: Identity, 'Fake' Identity, Ransomware & Digital
David Shefter, Chief Technology Officer at Ziften Technologies,  6/14/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-8030
PUBLISHED: 2018-06-20
A Denial of Service vulnerability was found in Apache Qpid Broker-J versions 7.0.0-7.0.4 when AMQP protocols 0-8, 0-9 or 0-91 are used to publish messages with size greater than allowed maximum message size limit (100MB by default). The broker crashes due to the defect. AMQP protocols 0-10 and 1.0 a...
CVE-2018-1117
PUBLISHED: 2018-06-20
ovirt-ansible-roles before version 1.0.6 has a vulnerability due to a missing no_log directive, resulting in the 'Add oVirt Provider to ManageIQ/CloudForms' playbook inadvertently disclosing admin passwords in the provisioning log. In an environment where logs are shared with other parties, this cou...
CVE-2018-11701
PUBLISHED: 2018-06-20
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x005cb509, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVE-2018-11702
PUBLISHED: 2018-06-20
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00578cb3, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.
CVE-2018-11703
PUBLISHED: 2018-06-20
FastStone Image Viewer 6.2 has a User Mode Write AV at 0x00402d6a, triggered when the user opens a malformed JPEG file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS (Access Violation) or possibly unspecified other impact.