A North Korean threat group has been using a technique called RID hijacking that tricks Windows into treating a low-privileged account as one with administrator permissions.
Hackers use Windows RID hijacking to create hidden admin account
Submitted 1 week ago by IllNess@infosec.pub to securitynews@infosec.pub