An attack that can leak authentication credentials on a Windows operating system by using the SMB file sharing protocol on a Windows operating system is an ever-present problem. It's been exploited in many ways, but the only solution found is limited to local area networks. Jonathan Brossard and Hormazd Billimoria recently presented one study involving internet attacks at the Black Hat security conference in 2015. However, no SMB-related attacks were published. In this paper, we will explain how an attack can cause Windows credential theft, which may affect the default configuration in Google Chrome browser.

Key words— Kredensial Windows, Google Chrome, Vulnerability

Microsoft Security Bulletin MS10-046, https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2010/ms10-046 (diakses 5 Januari 2018).

Oren Hafif. (2017). Reflected File Download - A New Web Attack Vector.

Jonathan Brossard dan Hormazd Billimoria. (2015). Black Hat USA Conference.