Microsoft provides more mitigation instructions for the PetitPotam attack
Malwarebytes
JULY 29, 2021
The attack could force remote Windows systems to reveal password hashes that could then be easily cracked. MS-EFSRPC is used for maintenance and management operations on encrypted data that is stored remotely and accessible over a network. As we saw when discussing the HiveNightmare zero-day, hashed passwords are useful to attackers.
Let's personalize your content