Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Next Windows 11 delays brute force attacks by default
#1
Information 
Quote:Microsoft plans to roll out new default settings in the next major Windows 11 release that delay brute force attacks against accounts on the system.

[Image: windows-11-brute-force-protection.jpg]

Brute-force attacks are commonly used by threat actors to gain access to systems. Especially Remote Desktop Protocol attacks are frequently used to gain remote access to Windows machines. Microsoft notes that human-operated ransomware attacks use Remote Desktop Protocol brute force attacks frequently to break into accounts.

One of the main shortcomings of Windows is that there is no default limitation that delays brute force attacks. While organizations may implement additional protections, e.g., by going passwordless or enabling two-factor authentication, most Windows systems are not protected against attacks.

Launched in the latest Windows 11 Insider builds and coming soon to all Windows 11 devices is a set of new account lockout policies that improve brute forcing protection on the operating system.

The protections delay brute force attacks by locking accounts after a number of failed login attempts. The default configuration locks accounts after 10 invalid login attempts for 10 minutes. The protection is available for all account types, including administrator accounts, by default.

Windows 11 administrators may change the default configuration using the Group Policy Editor:
  1. Use Windows-R to open the run box.
  2. Type gpedit.msc and hit the Enter-key to load the Group Policy Editor.
  3. Navigate to Local Computer Policy > Computer Configuration > Windows Settings > Security Settings > Account Lockout Policy.
  4. A double-click on any of the four listed policies displays options to change the default values.
The four policies in question are:
  • Account lockout duration -- defines the time that the account will be locked if too many invalid login attempts are logged by the Windows 11 system.
  • Account lockout threshold -- defines the number of failed login attempts that Windows uses to determine whether the account should be locked.
  • Allow Administrator account lockout -- whether admin accounts should be locked as well.
  • Reset account lockout counter after -- when the lockout counter is reset.
Closing Words

Microsoft plans to launch the new brute force protections in the next feature update, which is scheduled for a release in the coming months. The new defaults should limit human-operated ransomware attacks that try to brute force their way into Windows PCs significantly.

Now You: what is your take on this new protection?
...
Continue Reading
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Kaspersky: we’re starting a new digital ...
Meet the new Ka...harlan4096 — 15:44
GFYI [Official] Steganos VPN Online Shi...
Congrats to all winn...damien76 — 09:03
GFYI [Official] Backup4all Professional...
Congrats to all winn...damien76 — 09:02
GFYI [Official] Steganos VPN Online Shi...
We are pleased to an...jasonX — 10:33
GFYI [Official] Backup4all Professional...
We are pleased to an...jasonX — 09:59

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (51)isyqop
avatar (41)AntoineLer
avatar (35)prefenouff
avatar (36)emogig
avatar (38)Isabelle88Nes
avatar (38)ferpuMip
avatar (35)kinotExaro
avatar (47)HerbertPab
avatar (44)Susanskymn
avatar (38)stepaRurry
avatar (34)torieyang
avatar (43)MichaelPlaup
avatar (36)JasonSoult
avatar (33)hyxamuc

[-]
Online Staff
There are no staff members currently online.

>