Windows RDP Flaw: Old Passwords Grant Permanent Access

Popular：

Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Windows RDP Flaw: Old Passwords Grant Permanent Access

2025-05-01

A shocking Windows security vulnerability allows old passwords to grant indefinite access via RDP, even after being changed on a Microsoft or Azure account. Windows caches credentials locally, meaning even if online verification fails, old passwords still work. This creates a 'silent remote backdoor,' allowing attackers to access systems even after account compromise, bypassing MFA and Conditional Access. Experts urge immediate action to address this critical flaw.

(arstechnica.com)

Tech Windows security RDP vulnerability credential caching

Browser-Based CSV Conversion Powerhouse: Transform Your Data with Ease

Stockhausen's Friday from Light: A Sonic Spectacle of Temptation and War