Windows 10 users warned as popular downloads could attack your PC »

Windows 10 users are going through one other new safety menace, this time coming from an unlikely place. If you need to jazz up the look of your Windows 10 working system then one of many best methods to do that is by putting in a customized theme. These themes can be found for obtain from the Microsoft Store, catering for a variety of kinds and tastes.

However, a safety skilled has found an innocent-looking Windows 10 theme pack can be utilized to steal an unsuspecting sufferer’s password.

As reported on in a post by Bleeping Computer, researcher Jimmy Bayne found how a Windows 10 theme pack will be the pivotal part in a Pass-the-Hash attack.

These kind of assaults are used to steal Windows 10 usernames and passwords by tricking a sufferer into accessing a distant useful resource that requires authentication.

To perform the attack, Bayne defined {that a} nefarious get together would want to tinker with a wallpaper key present in a theme pack to allow login credentials to be stolen.

READ MORE: Samsung’s new Windows 10 laptop might solve your broadband woes

The compromised file could then be shared by way of an e-mail attachment or via a obtain hyperlink to an unsuspecting Windows 10 users.

Bayne defined: “Using a Windows .theme file, the Wallpaper key can be configured to point to a remote auth-required http/s resource. When a user activates the theme file (e.g. opened from a link/attachment), a Windows cred prompt is displayed to the user.

“The wallpaper secret’s situated beneath the “Control PanelDesktop” part of the .theme file. Other keys could probably be utilized in the identical method, and this may occasionally additionally work for netNTLM hash disclosure when set for distant file places.”

If a Windows 10 user falls for the compromised theme, hackers will still have some legwork to – having to crack the hashed password they managed to obtain.

However, tests run by Bleeping Computer shows special scripts can manage to do this in a matter of seconds.

Advising Windows 10 users on how to stay safe, Bayne said re-associating any .theme, .themepack or .desktopthemepackfile extensions will help protect a user.

However, the trade-off to this is it would prevent a Windows 10 user from switching to another theme.

While setting up two-factor authentication on your Microsoft account, if you haven’t done so already, will add a much-needed extra level of security.

Speaking to Forbes, Jake Moore, cybersecurity specialist at ESET, said: “These gimmicky themes are clearly not created with safety in thoughts, and on the threat of exposing passwords and different delicate information, I might recommend users suppose twice when putting in them.

(*10*)It is important to make use of two-factor authentication for as many providers that supply it.”


Source link

Add Comment

Click here to post a comment