Mandiant releases rainbow table that cracks weak admin password in 12 hours
Summary
Mandiant released a rainbow table for NTLMv1 passwords that enables cracking of admin credentials in under 12 hours using consumer hardware, hosted on Google Cloud. The article explains why NTLMv1 remains in use due to legacy apps and migration challenges, emphasizes the immediate need to deprecate Net-NTLMv1, and notes that the rainbow tables can help security teams demonstrate the insecurity of the protocol, while attackers already possess and deploy similar techniques.