Ethical Hacking News
Mandiant has released a quick credential cracker that can crack credentials in under 12 hours, aiming to hasten the death of the endangered security protocol Net-NTLMv1. The move raises concerns about cybersecurity firms' responsibility to develop tools that mitigate vulnerabilities and highlights the urgent need for organizations to prioritize security.
Mandiant has released a quick credential cracker that can crack credentials in under 12 hours. The move aims to hasten the death of Net-NTLMv1, an endangered security protocol known for its vulnerabilities. Microsoft's Net-NTLMv1 continues to be used despite its well-known weaknesses, leaving users vulnerable to attacks. Mandiant has released a dataset to demonstrate the weakness of this protocol using consumer-grade hardware. Cybersecurity experts are urging organizations to immediately disable the use of Net-NTLMv1. The release of Mandiant's tool raises questions about the responsibility of cybersecurity firms to develop tools that can mitigate vulnerabilities. Net-NTLMv1 is a significant risk to users and organizations, highlighting the need for modernizing infrastructure and prioritizing security.
Mandiant, a leading cybersecurity firm, has recently released a quick credential cracker that can crack credentials in under 12 hours. The move is seen as a strategic effort by Mandiant to hasten the death of an endangered security protocol known as Net-NTLMv1.
For over two decades, researchers have been aware of the vulnerabilities of Net-NTLMv1, which has consistently exposed users to credential theft. Despite its well-known weaknesses, Microsoft's Net-NTLMv1 continues to be used in various applications and systems, leaving them vulnerable to attacks.
In a bid to raise awareness about the dangers of Net-NTLMv1, Mandiant released a dataset that can help security professionals demonstrate the weakness of this protocol using consumer-grade hardware. According to Nic Losby, Mandiant's principal red team consultant, "The release of this dataset allows defenders and researchers to recover keys in under 12 hours using consumer hardware costing less than $600 USD."
This development has sparked concerns among cybersecurity experts, who are now urging organizations to immediately disable the use of Net-NTLMv1. The Register had previously highlighted the persistence of Net-NTLMv1 in its reporting back in 2010, highlighting how it continues to pose a significant risk to users and organizations.
Moreover, Mandiant's move has raised questions about the responsibility of cybersecurity firms to develop tools that can help mitigate vulnerabilities. While some may argue that releasing such a tool is an act of self-interest, others see it as a proactive effort to educate users and promote the adoption of safer protocols.
In recent years, we have seen numerous high-profile cases of data breaches and cyber-attacks, many of which were enabled by the use of outdated or insecure protocols like Net-NTLMv1. The release of Mandiant's credential cracker highlights the urgent need for organizations to prioritize security and invest in modernizing their infrastructure.
In light of this development, we can expect to see a renewed focus on the adoption of safer protocols and the education of users about the risks associated with outdated technologies. As cybersecurity continues to evolve, it is essential that organizations prioritize security and stay ahead of emerging threats.
Related Information:
https://www.ethicalhackingnews.com/articles/Mandiant-Releases-Quick-Credential-Cracker-to-Hasten-Death-of-Endangered-Security-Protocol-ehn.shtml
https://go.theregister.com/feed/www.theregister.com/2026/01/18/infosec_news_in_brief/
Published: Sun Jan 18 18:07:38 2026 by llama3.2 3B Q4_K_M
