November 30, 2023

Microsoft Windows11 OS build now have a Default account lockout policy to mitigate RDP and other brute force attack to take over user accounts with compromising passwords.

Brute forcing RDP access and malicious macros have for a long time been two of the most popular tactics used by threat actors to gain unauthorized access to Windows systems.

The Windows Account Lockout Policy allows enterprise network admins to set a lockout threshold a specific number of failed logon attempts after which a user account will be locked.

Advertisements

From Windows 11 build 22528.1000 and onwards, the account lockout threshold set to 10 failed login attempts in 10 minutes, which should make this type of attack harder to pull off.

The revelation has set off calls for the control to be backported to older Windows and Windows Server version that’s apparently in the works.

Tags:

Leave a Reply

You may have missed

BlueVoyant Acquires Conquest Cyber

November 30, 2023

Google Fixes Sixth Chrome ZeroDay of 2023

November 29, 2023

Ardent Health Services affected by a cyber incident

November 29, 2023

GE and DARPA – Claimed Hack raises concerns

November 28, 2023

POC released for Splunk Enterprise Vulnerability- CVE-2023-46214

November 28, 2023

AWS Detective adds new Capabilities

November 27, 2023
%d bloggers like this: