all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

The Phantom Credentials of SCCM: Why the NAA Won’t Die

Add to bookmarks
June 28, 2022, 4:02 p.m. | Duane Michael

Security Boulevard securityboulevard.com

TL;DR — Stop Using Network Access Accounts!


If a Windows machine has ever been an SCCM client, there may be credential blobs for the network access account (NAA) on disk.


If an Active Directory account has ever been configured as an NAA, there may be credential blobs for that account on Windows hosts in the environment.


Stop using NAAs and transition to Enhanced HTTP. That’s not enough! The credentials may persist on former clients. The NAA accounts should be …

credentials hacking information security red team sccm social engineering windows

Visit resource

More from securityboulevard.com / Security Boulevard

Crunching Some Numbers on PHP Support 3 hours ago | securityboulevard.com
application breaking can continue +16
Google Chrome DBSC Protection Tested Against Cookie Attacks 4 hours ago | securityboulevard.com
attacks authentication browser browser security +31
The Dark Side of EDR: Repurpose EDR as an Offensive Tool 7 hours ago | securityboulevard.com
capabilities code dark edr +13
The Ultimate Guide to SBIR and STTR Program Budgeting 11 hours ago | securityboulevard.com
budgeting budgets can corporations +14
Vulnerabilities for AI and ML Applications are Skyrocketing 14 hours ago | securityboulevard.com
ai ai and ml in security ai development applications +34
Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 15 hours ago | securityboulevard.com
affiliates as-a-service blackcat cl0p +30
What Makes Containers Vulnerable? 16 hours ago | securityboulevard.com
containers guide mend security +5
USENIX Security ’23 – NRDelegationAttack: Complexity DDoS attack on DNS Recursive Resolvers 16 hours ago | securityboulevard.com
access attack authors channel +18
DevOps pioneers navigate organizational transformation 17 hours ago | securityboulevard.com
depth devops devops transformation download +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Systems Security Officer (ISSO), Junior

@ Dark Wolf Solutions | Remote / Dark Wolf Locations
View on infosec-jobs.com

Cloud Security Engineer

@ ManTech | REMT - Remote Worker Location
View on infosec-jobs.com

SAP Security & GRC Consultant

@ NTT DATA | HYDERABAD, TG, IN
View on infosec-jobs.com

Security Engineer 2 - Adversary Simulation Operations

@ Datadog | New York City, USA
View on infosec-jobs.com
View more jobs