|
|
|
|
|
|
by timewarp256
2699 days ago
|
|
|
Clicking links can be a problem in corporate environments where automatic login has been enabled on Internet Explorer and outbound SMB not blocked. The phishing site immediately gets their domain ntlm hash, which can often be cracked to gain a password. This can also be a problem in PDF and Word docs without the need to employ a 0 day. https://resources.infosecinstitute.com/steal-windows-login-c... Also to note that password managers can help mitigate phishing, as they will not offer to complete passwords if the domain does not match. |
|
|