But that’s not the only good news for Windows 11 security nerds. In addition, Microsoft also announced a new security feature that will soon come to the OS and is currently ready for testing in Insider builds. Called the SMB authentication rate limiter, this new feature will block brute-force attacks against a Windows 11’s SMB service, where attackers try a large number of user/password combos in an attempt to log into a Windows system via its SMB service.

With the release of Windows 11 Insider Preview Build 25206 Dev Channel today, the SMB server service now defaults to a 2-second default between each failed inbound NTLM authentication. This means if an attacker previously sent 300 brute force attempts per second from a client for 5 minutes (90,000 passwords), the same number of attempts would now take 50 hours at a minimum. The goal here is to make a machine a very unattractive target for attacking local credentials through SMB.

Read more in

• SMB authentication rate limiter now on by default in Windows Insider
• Announcing Windows 11 Insider Preview Build 25206

The post SMB brute-force protection with Windows 11 SMB Authentication Rate Limiter appeared first on PUPUWEB - Information Resource for Emerging Technology Trends and Cybersecurity.