Mandiant releases rainbow table that cracks weak admin password in 12 hours
Summary
Mandiant has released a rainbow table capable of cracking weak administrator passwords that use the NTLM hashing function within 12 hours. This tool targets systems still relying on outdated and vulnerable hashing algorithms, potentially exposing them to unauthorized access. Windows systems still using vulnerable hashing functions are the primary targets.
IFF Assessment
The rainbow table enables faster cracking of weak passwords, making it easier for attackers to compromise vulnerable systems.
Severity
Defender Context
Defenders need to identify and upgrade systems still using NTLM for password hashing to more secure algorithms like bcrypt or Argon2. Regularly audit password policies and enforce strong, unique passwords for all administrator accounts. This rainbow table makes password cracking more efficient, thus increasing the urgency to migrate away from vulnerable hashing algorithms.