Skip to content

H3-2022-0084

Credential Reuse - Windows Local Administrator Accounts

Category CREDENTIALS
Base Score 9.0

Description

A local user credential from one Windows machine was re-used to access another Windows machine with local administrator privileges.

Impact

Attackers take advantage of credential reuse to move laterally from machine to machine within the environment. When the re-used credential is that of a local administrator, attackers can fully compromise many machines in the environment with a single credential in hand.

References