Educause Security Discussion mailing list archives
RDPThief Tool
From: randy <marchany () VT EDU>
Date: Thu, 14 Nov 2019 10:01:22 -0500
RDPThief steals cleartext credentials from RDP clients. See an excellent writeup on the tool at https://www.mdsec.co.uk/2019/11/rdpthief-extracting-clear-text-credentials-from-remote-desktop-clients/ . You can download the tool from the link at the end of the article. They have a nice video that shows the tool in action. If you use RDP to/from any domain joined computer, you run the risk of exposing your domain credentials. Just an FYI. -Randy Marchany VA Tech IT Security Office and Lab ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
Current thread:
- RDPThief Tool randy (Nov 14)
- Re: RDPThief Tool Jonathon Poling (Nov 14)