What is pass-the-hash (PtH) attack and why does it bypass traditional password security?

Question

Cybersecurity Fundamentals — Hard

What is pass-the-hash (PtH) attack and why does it bypass traditional password security?

Accepted Answer

A pass-the-hash (PtH) attack involves capturing an NTLM password hash and using it for authentication without cracking the hash. This bypasses the need to know the plaintext password, making it a stealthy way to gain unauthorized access.