This National Cyber Security Awareness month, we’d like to congratulate and thank Microsoft on their efforts to block Pass the Hash cyber-attacks. Known by Microsoft as “one of the most popular types of credential theft and reuse attacks,” Pass the Hash attacks are known for their ability to infiltrate full networks within minutes, making a major mess along the way.
With the Windows 8.1 update released on October 1, Microsoft has added major security improvements that are intended to block the ability of hackers to use these kinds of attacks. With the new release, Microsoft has bought us all some “space to breathe.”
Use your space wisely and remember that cyber security is constantly evolving. Take these three steps to help strengthen your organization’s password practices.
- Administrator accounts still need to be separated and used with care. Segment administrator accounts into a regular AD account and a user-specific Domain Administrator account for use only when privilege is needed.
- Lock down Domain Administrator passwords in a secure place where the administrator can access them when needed, and admin access is fully audited, so you have a record of use.
- Change Domain Administrator passwords to a new, random value after each use.
These steps can be incorporated into your security policy and implemented manually or through an automation tool, such as Thycotic’s Secret Server. Password management tools provide added value to security and password management when they enable role-based access, sharing among teams, and full auditing for compliance.
Learn more about the Windows 8.1 update here.