Windows 10 custom themes can be used to steal credentials
Security researcher Jimmy Bayne has discovered a loophole in Windows 10 theme settings that could be used by attackers to steal OS credentials. To do this, you need to create a specially configured theme that will allow a Pass-the-hash attack.