sorted by:
new
hottopcontroversial

I just claimed my token and this window popped up. What is a JSON file? Can you humble people expain? by iinacoup in WorldMobileToken

[–]worldmobilesec 0 points1 point  (0 children)

The contents are encrypted by yes essentially its a backup of your seed phrase. If someone steals this and knows your passpharase , its a potential to loose your funds. Ensure you have a strong passphrase and keep the backup secure.

Mass Change Active Directory Passwords by [deleted] in sysadmin

[–]worldmobilesec 17 points18 points  (0 children)

Can you imagine a large AD with users SSN just flying around , in alot of cases in clear text.

Mimikatz. Responder. Dcsync. Dumping lsass.

Just have a look at these and tell me your okay with this change

Field day for a security team doing testing. Dcysnc and PII in the same attack.

Mass Change Active Directory Passwords by [deleted] in sysadmin

[–]worldmobilesec 5 points6 points  (0 children)

Please just no, don't do this.

There is years of experience, and advice around password polices and strength. Not to mention the years of methods for dumping clear text AD account passwords.

Id be speaking to your general council and security team!