Cybersecurity researchers have identified a growing trend in Windows-targeted attacks that exploit fundamental operating system features to force machines into surrendering valuable credentials without requiring user interaction or system vulnerabilities.
Known as authentication coercion, this attack method manipulates legitimate Remote Procedure Call (RPC) protocols to trick computers into authenticating to attacker-controlled systems, potentially compromising entire network domains.
Authentication coercion attacks exploit the auto-authentication behavior built into Windows. When a machine attempts to connect to a network resource like a shared directory or printer, it automatically initiates authentication.
https://gbhackers.com/authentication-coercion/