Cylance announced the discovery of a new attack with the capacity to leverage automated HTTP requests sent by background applications. The attack can drastically speed up SMB capture and relay attacks against Windows-based laptops and tablets connecting to insecure wireless networks. On a Windows 8.1 laptop, at least 50 different HTTP connections were made after a restart and within 5 minutes, most of which could be hijacked by a network-local attacker to force SMB authentication to a malicious service. The source of these connections ranged from OEM update checks to weather and news applications”]
Source: https://informationsecuritybuzz.com/articles/cylance-research-windows-exploit-rapid7-comment/

