The Cyber Threat Perspective cover image

The Cyber Threat Perspective

Episode 2: How to Find Passwords on Network Shares Before Attackers Do

Aug 10, 2022
The discussion dives into the criticality of recognizing artifacts in network file shares during internal penetration tests. Discover the interplay between user behavior and access permissions that can create vulnerabilities. Learn how sensitive information, like passwords and credentials, often lurks on file shares, waiting to be exploited. The speakers highlight the dangers of reused credentials and reveal tools like PowerView that can enhance network security. Valuable best practices for auditing permissions and safeguarding sensitive data are shared throughout.
16:37

Podcast summary created with Snipd AI

Quick takeaways

  • Overly permissive access configurations on file shares lead to sensitive data exposure, posing significant risks for potential attackers.
  • Regular auditing of access permissions and proactive manual searches for sensitive information are essential for enhancing organizational security.

Deep dives

The Issue with File Shares

File shares are often configured with overly permissive access, allowing many users to access sensitive information that they should not. This issue arises from a combination of user behavior and organizational culture, which encourages open access to facilitate work efficiency. IT departments may prioritize accessibility over security, leading to practices that compromise sensitive data protection. This results in network shares being filled with confidential documents, personal data, and even password files, making them a prime target for attackers during penetration tests.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode