🖥️ VNC might be convenient for legacy systems, but it's just as convenient for attackers...
 
Unencrypted traffic makes it easy to intercept credentials. Some setups don’t require a password at all. And even when passwords are used, they’re often weakly stored and easily cracked.
 
Attackers might not even need to log in, just sniff the traffic and capture screens or keystrokes without being noticed.
 
To prove the point, our Kieran built a Python script (VncCrack.py) that cracks VNC passwords in plaintext using intercepted traffic.
 
📌Check it out in action in our latest blog post: https://www.pentestpartners.com/security-blog/vnc-rdp-for-all-to-see/

#CyberSecurity #PenTesting #VNC #LegacySecurity #DFIR #NetworkSecurity #CredentialTheft

Pearson’s hack wasn’t just a data leak—it exposed how outdated systems can backfire big time. How did old tech and missteps lead to a costly wake-up call in cybersecurity?

https://thedefendopsdiaries.com/pearson-cyberattack-lessons-in-cybersecurity-and-transparency/

#pearsoncyberattack
#cybersecurity
#legacysecurity
#databreach
#transparency