all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Experts Detail New Zero-Click Windows Vulnerability for NTLM Credential Theft

Add to bookmarks
May 10, 2023, 2:23 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Cybersecurity researchers have shared details about a now-patched security flaw in Windows MSHTML platform that could be abused to bypass integrity protections on targeted machines.
The vulnerability, tracked as CVE-2023-29324 (CVSS score: 6.5), has been described as a security feature bypass. It was addressed by Microsoft as part of its Patch Tuesday updates for May 2023.
Akamai security

bypass click credential credential theft cve cvss cybersecurity experts flaw integrity machines microsoft mshtml ntlm platform researchers score security security feature bypass theft vulnerability windows windows vulnerability zero-click

Visit resource

More from thehackernews.com / The Hacker News

New Case Study: The Malicious Comment an hour ago | thehackernews.com
case code comments discover +12
Google Simplifies 2-Factor Authentication Setup (It's More Important Than Ever) 2 hours ago | thehackernews.com
2fa 2-step verification 2sv accounts +18
Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering 3 hours ago | thehackernews.com
alexander vinnik august btc btc-e +19
Critical Tinyproxy Flaw Opens Over 50,000 Hosts to Remote Code Execution 22 hours ago | thehackernews.com
cisco code code execution critical +21
China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices 22 hours ago | thehackernews.com
arcanedoor attack attack surface attack surface management +23
It Costs How Much?!? The Financial Pitfalls of Cyberattacks on SMBs 1 day, 1 hour ago | thehackernews.com
business cyberattacks cybercriminals financial +8
Xiaomi Android Devices Hit by Multiple Flaws Across Apps and System Components 1 day, 2 hours ago | thehackernews.com
access account android android devices +20
New 'Cuckoo' Persistent macOS Spyware Targeting Intel and Arm Macs 1 day, 4 hours ago | thehackernews.com
act apple apple macos arm +19
Microsoft Outlook Flaw Exploited by Russia's APT28 to Hack Czech, German Entities 3 days, 3 hours ago | thehackernews.com
actor apt28 campaign cyber +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Operator

@ JPMorgan Chase & Co. | LONDON, United Kingdom
View on infosec-jobs.com

SOC Analyst

@ Resillion | Bengaluru, India
View on infosec-jobs.com

Director of Cyber Security

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Jr. Security Incident Response Analyst

@ Kaseya | Miami, Florida, United States
View on infosec-jobs.com

Infrastructure Vulnerability Consultant - (Cloud Security , CSPM)

@ Blue Yonder | Hyderabad
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com
View more jobs