Password Cracking 101

An organization's most sensitive data -- customer information, social security numbers, protected health information, etc. -- is typically located within an application that is only accessible from an employee workstation, virtual desktop, or terminal server. That's why criminal hackers will often gain access to an environment and then work toward acquiring the password hashes for all user accounts.