HomeTechnologyNew Microsoft Windows 11 security tool will frustrate password hackers

New Microsoft Windows 11 security tool will frustrate password hackers

Published on


New Delhi: Microsoft has unveiled a new security feature in Windows 11 that will make it extremely diffficult for hackers to steal user credentials.

Called the SMB authentication rate limiter, it is available in Windows 11 Insider and Windows Server Insider builds and makes it more time-consuming for cyber criminals to target the server with password-guessing attacks.

“If your organisation has no intrusion detection software or doesn`t set a password lockout policy, an attacker might guess a user`s password in a matter of days or hours. A consumer user who turns off their firewall and brings their device to an unsafe network has a similar problem,” said Microsoft security expert Ned Pyle.

The company said that the SMB server service now defaults to a two-second default between each failed inbound New Technology LAN Manager (NTLM) authentication.

SMB refers to the Server Message Block (SMB) network file-sharing protocol, while Windows NTLM is a suite of security protocols offered by Microsoft to authenticate users` identity and protect the integrity and confidentiality of their activity.

“This means if an attacker previously sent 300 brute force attempts per second from a client for 5 minutes (90,000 passwords), the same number of attempts would now take 50 hours at a minimum. The goal here is to make a machine a very unattractive target for attacking local credentials through SMB,” informed Pyle.

SMB refers to the Server Message Block (SMB) network file-sharing protocol. Windows and Windows Server come with the SMB server enabled. NTLM refers to the NT Lan Manager (NTLM) protocol for client-sever authentication with, for example, Active Directory (AD) NTLM logons.

Microsoft is rolling out several secure defaults in Windows 11, including a default account lockout policy to mitigate RDP and other brute force password attacks.





Source link

Latest articles

“Need Transparency”: S Jaishankar On Blocking Pak Terrorists’ Listing At UN

<!-- -->S Jaishankar said terrorism shouldn't be used as a "political tool". (File)New...

LinkedIn ran social experiments on 20 million users over five years

LinkedIn ran experiments on more than 20 million users over five years that,...

India On Track To Attract $100 Billion FDI in Current Financial Year; Check Govt Efforts

India is on track to attract $100 billion FDI in the current financial...

Ajinkya Rahane Sends Yashasvi Jaiswal Off For Disciplinary Issues In Duleep Trophy. Watch Final | Cricket News

Rahane sent Jaiswal off the field for disciplinary issues© TwitterThe fifth and final...

More like this

5G telecom service to roll out very soon in India: Ashwini Vaishnaw

New Delhi: 5G telecom services in India will be launched very soon and...

Confirmed! Instagram story videos under 60-seconds won’t split into segments

New Delhi: Meta has confirmed to soon roll out longer stories format on...

Mobile app soon to provide real-time data on EV charging stations; Here is all you need to know

New Delhi: To ensure that motorists using electric vehicles get access to real-time...