Password Reuse Found in Active Directory Services Database (NTDS)
After obtaining domain administrator access, NodeZero dumped all domain user NTLM hashes from a domain controller. At least two active domain users were found sharing the same password. View the proof for a summary report.
Attackers can exploit password reuse to discover new credentials and move laterally through the environment, gaining access to more data, applications, and hosts.