Micropatchers share fix for NTLM hash leak flaw in Windows

Micropatchers share fix for NTLM hash leak flaw in Windows

Microsoft's OS sure loves throwing your creds at remote systems

New Windows zero-day exposes NTLM credentials, gets unofficial patch

A new zero-day vulnerability has been discovered that allows attackers to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. [...]

All Windows 11, 10, Server versions affected by a new zero day, unofficial patch out

All of Microsoft's server and client Windows versions are susceptible to a new NTLM security flaw. An unofficial patch has been released by 0patch. Read more...

0patch uncovers a security vulnerability in all versions of Windows -- and releases free fixes

0patch has revealed a 0day vulnerability that affects all desktop versions of Windows as well as Windows Server. In all, a staggering 21 different editions of Windows have the security issue which is described as a URL File NTLM Hash Disclosure vulnerability. The security patching firm has reported the issue to Microsoft but -- as has been the case in the past -- the Windows-maker has yet to produce a fix. Stepping up to fill the void, 0patch ha…

Windows NTLM Zero-Day Vulnerability Exposes User Credentials

A critical zero-day vulnerability affecting all modern Windows Workstation and Server versions has been discovered. The flaw enables attackers to steal NTLM credentials with minimal user interaction, posing a significant security risk. It impacts systems from Windows 7 and Server 2008 R2 to the latest Windows 11 (v24H2) and Server 2022. The vulnerability allows attackers […] The post Windows NTLM Zero-Day Vulnerability Exposes User Credentials a…