{"id":27673,"date":"2015-02-11T13:13:45","date_gmt":"2015-02-11T21:13:45","guid":{"rendered":"http:\/\/blogs.microsoft.com\/cybertrust\/?p=27673"},"modified":"2023-08-03T14:40:07","modified_gmt":"2023-08-03T21:40:07","slug":"krbtgt-account-password-reset-scripts-now-available-for-customers","status":"publish","type":"post","link":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/","title":{"rendered":"KRBTGT Account Password Reset Scripts now available for customers"},"content":{"rendered":"<p>Credential theft and reuse attacks continue to be top of mind for many of the CISOs I have talked to recently. We have discussed this topic several times in the past:<\/p>\n<ul>\n<li><a href=\"http:\/\/blogs.microsoft.com\/cybertrust\/2014\/07\/08\/new-strategies-and-features-to-help-organizations-better-protect-against-pass-the-hash-attacks\/\">New Strategies and Features to Help Organizations Better Protect Against Pass-the-Hash Attacks<\/a><\/li>\n<li><a href=\"http:\/\/blogs.microsoft.com\/cybertrust\/2012\/12\/11\/new-guidance-to-mitigate-determined-adversaries-favorite-attack-pass-the-hash\/\">New Guidance to Mitigate Determined Adversaries\u2019 Favorite Attack: Pass-the-Hash<\/a><\/li>\n<li><a href=\"http:\/\/blogs.microsoft.com\/cybertrust\/2013\/06\/13\/targeted-attacks-video-series\/\">Targeted Attacks Video Series<\/a><\/li>\n<li><a href=\"http:\/\/blogs.microsoft.com\/cybertrust\/2014\/10\/22\/you-asked-we-answered-askpth-questions-and-answers\/\">You asked, we answered: #AskPtH Questions and Answers<\/a><\/li>\n<\/ul>\n<p><a href=\"http:\/\/mscorpmedia.azureedge.net\/mscorpmedia\/2014\/10\/Untitled1.png\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-25563 size-medium\" src=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\" alt=\"Pash-The-Hash Icon.\" width=\"300\" height=\"111\" srcset=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png 300w, https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2014\/10\/Untitled1.png 658w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/a>Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication. Kerberos authentication is achieved by the use of tickets enciphered with a symmetric key derived from the password of the server or service to which access is requested. To request such a session ticket, a special ticket, called the Ticket Granting Ticket (TGT) must be presented to the Kerberos service. The TGT is enciphered with a key derived from the password of the krbtgt account, which is known only by the Kerberos service<a href=\"#_edn1\" name=\"_ednref1\">[i]<\/a>.<\/p>\n<p>A stolen krbtgt account password can wreak havoc on an organization because it can be used to impersonate authentication throughout the organization thereby giving an attacker access to sensitive data.<\/p>\n<p>One way to help mitigate the risk of a bad actor using a compromised krbtgt key to forge user tickets is by periodically resetting the krbtgt account password. Resetting this password on a regular basis reduces the useful lifetime of krbtgt keys, in case one or more of them is compromised.<\/p>\n<p>Today we are sharing the <a href=\"https:\/\/gallery.technet.microsoft.com\/Reset-the-krbtgt-account-581a9e51\">krbtgt account password reset script<\/a> and associated guidance that will enable customers to interactively reset and validate replication of the krbtgt account keys on all writable domain controllers in the domain. By providing this script and associated guidance, we hope to help customers perform the reset in a way which reduces the likelihood of authentication errors caused by delayed distribution of the new krbtgt account keys in their environment.<\/p>\n<p>The Reset-KrbtgtKeyInteractive-v1.4 enables customers to:<\/p>\n<ol>\n<li>Perform a single reset of the krbtgt account password (it can be run multiple times for subsequent resets).<\/li>\n<li>Validate that all writable DC\u2019s in the domain have replicated the keys derived from the new password, so they are able to begin using the new keys.<\/li>\n<\/ol>\n<p>The krbtgt account password reset script guide includes detailed information on how to use the reset script and its three modes- Informational, Estimation Mode, and Reset and offers:<\/p>\n<ol>\n<li>A step-by-step list of tasks associated with performing the krbtgt account password reset.<\/li>\n<li>Information for customers wishing to invalidate all existing TGTs by performing a double reset of the krbtgt account secret during a comprehensive Active Directory recovery.<\/li>\n<\/ol>\n<p>We\u2019ve also provided a detailed guide which helps system administrators understand the required tasks, impact to the organization, schedule and timeline, and other considerations. Together, this combination covers necessary tasks, tests, and validations that should be performed before and after the reset.<\/p>\n<p>It is important to remember that resetting the krbtgt is only one part of a recovery strategy and alone will likely not prevent a previously successful attacker from obtaining unauthorized access to a compromised environment in the future. We strongly advise that customers create a comprehensive recovery plan using guidance found in the <a href=\"http:\/\/download.microsoft.com\/download\/7\/7\/A\/77ABC5BD-8320-41AF-863C-6ECFB10CB4B9\/Mitigating-Pass-the-Hash-Attacks-and-Other-Credential-Theft-Version-2.pdf\">Mitigating Pass-the-Hash and Other Credential Theft, version 2<\/a>.<\/p>\n<p><a href=\"#_ednref1\" name=\"_edn1\">[i]<\/a> <a href=\"https:\/\/technet.microsoft.com\/en-us\/library\/cc733924(v=ws.10).aspx\">https:\/\/technet.microsoft.com\/en-us\/library\/cc733924(v=ws.10).aspx<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.<\/p>\n","protected":false},"author":47,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_classifai_error":"","footnotes":""},"content-type":[3662],"topic":[3688],"products":[],"threat-intelligence":[],"tags":[3896,3822,3823],"coauthors":[1954],"class_list":["post-27673","post","type-post","status-publish","format-standard","hentry","content-type-news","topic-threat-trends","tag-credential-theft","tag-microsoft-security-insights","tag-password-protection"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog<\/title>\n<meta name=\"description\" content=\"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog\" \/>\n<meta property=\"og:description\" content=\"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\" \/>\n<meta property=\"og:site_name\" content=\"Microsoft Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2015-02-11T21:13:45+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-03T21:40:07+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\" \/>\n<meta name=\"author\" content=\"Tim Rains\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Tim Rains\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\"},\"author\":[{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/timrains\/\",\"@type\":\"Person\",\"@name\":\"Tim Rains\"}],\"headline\":\"KRBTGT Account Password Reset Scripts now available for customers\",\"datePublished\":\"2015-02-11T21:13:45+00:00\",\"dateModified\":\"2023-08-03T21:40:07+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\"},\"wordCount\":556,\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\",\"keywords\":[\"Credential theft\",\"Microsoft Security Insights\",\"Password protection\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\",\"name\":\"KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\",\"datePublished\":\"2015-02-11T21:13:45+00:00\",\"dateModified\":\"2023-08-03T21:40:07+00:00\",\"description\":\"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"KRBTGT Account Password Reset Scripts now available for customers\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"name\":\"Microsoft Security Blog\",\"description\":\"Expert coverage of cybersecurity topics\",\"publisher\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization\",\"name\":\"Microsoft Security Blog\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"contentUrl\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png\",\"width\":512,\"height\":512,\"caption\":\"Microsoft Security Blog\"},\"image\":{\"@id\":\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog","description":"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/","og_locale":"en_US","og_type":"article","og_title":"KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog","og_description":"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.","og_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/","og_site_name":"Microsoft Security Blog","article_published_time":"2015-02-11T21:13:45+00:00","article_modified_time":"2023-08-03T21:40:07+00:00","og_image":[{"url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png"}],"author":"Tim Rains","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Tim Rains","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#article","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/"},"author":[{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/author\/timrains\/","@type":"Person","@name":"Tim Rains"}],"headline":"KRBTGT Account Password Reset Scripts now available for customers","datePublished":"2015-02-11T21:13:45+00:00","dateModified":"2023-08-03T21:40:07+00:00","mainEntityOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/"},"wordCount":556,"publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png","keywords":["Credential theft","Microsoft Security Insights","Password protection"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/","name":"KRBTGT Account Password Reset Scripts now available for customers | Microsoft Security Blog","isPartOf":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage"},"thumbnailUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png","datePublished":"2015-02-11T21:13:45+00:00","dateModified":"2023-08-03T21:40:07+00:00","description":"Although pass-the-hash credential theft and reuse attacks aren\u2019t new, more recently security researchers have been focusing on attack methods for Kerberos authentication.","breadcrumb":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#primaryimage","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/\/wp-content\/uploads\/2014\/10\/Untitled1-300x111.png"},{"@type":"BreadcrumbList","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2015\/02\/11\/krbtgt-account-password-reset-scripts-now-available-for-customers\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/"},{"@type":"ListItem","position":2,"name":"KRBTGT Account Password Reset Scripts now available for customers"}]},{"@type":"WebSite","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#website","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","name":"Microsoft Security Blog","description":"Expert coverage of cybersecurity topics","publisher":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#organization","name":"Microsoft Security Blog","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","contentUrl":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-content\/uploads\/2018\/08\/cropped-cropped-microsoft_logo_element.png","width":512,"height":512,"caption":"Microsoft Security Blog"},"image":{"@id":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/#\/schema\/logo\/image\/"}}]}},"msxcm_display_generated_audio":false,"distributor_meta":false,"distributor_terms":false,"distributor_media":false,"distributor_original_site_name":"Microsoft Security Blog","distributor_original_site_url":"https:\/\/www.microsoft.com\/en-us\/security\/blog","push-errors":false,"_links":{"self":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/27673"}],"collection":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/users\/47"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/comments?post=27673"}],"version-history":[{"count":0,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/posts\/27673\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/media?parent=27673"}],"wp:term":[{"taxonomy":"content-type","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/content-type?post=27673"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/topic?post=27673"},{"taxonomy":"products","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/products?post=27673"},{"taxonomy":"threat-intelligence","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/threat-intelligence?post=27673"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/tags?post=27673"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.microsoft.com\/en-us\/security\/blog\/wp-json\/wp\/v2\/coauthors?post=27673"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}