all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Guidance for investigating attacks using CVE-2023-23397

Add to bookmarks
March 24, 2023, 6:35 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

This guide provides steps organizations can take to assess whether users have been targeted or compromised by threat actors exploiting CVE-2023-23397. A successful exploit of this vulnerability can result in unauthorized access to an organization’s environment by triggering a Net-NTLMv2 hash leak. Understanding the vulnerability and how it has been leveraged by threat actors can help guide the overall investigative process.


This document covers:



  • An overview of the vulnerability

  • Exploit scenarios

  • Post-exploit activities observed in attacks

  • Techniques for determining …

access attacks compromised cve cve-2023-23397 document environment exploit exploiting guidance guide hash leak mitigations organization organizations process protect result techniques threat threat actors unauthorized access understanding vulnerability

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

2024 Central Ohio InfoSec Summit 31 minutes ago | malware.news
adlumin article connect cybersecurity +23
Monthly Threat Actor Group Intelligence Report, February 2024 (JPN) 2 hours ago | malware.news
actor adversary adversary-in-the-middle aitm +29
Boise ISSA Conference 2 hours ago | malware.news
adlumin conference idaho infosec +8
ISC Stormcast For Wednesday, April 24th, 2024 https://isc.sans.edu/podcastdetail/8952, (Wed, Apr 24th) 2 hours ago | malware.news
topic
RIC ONE DPSS 2024 Annual Conference 2 hours ago | malware.news
adlumin conference connect data +19
API Rug Pull - The NIST NVD Database and API (Part 4 of 3), (Wed, … 3 hours ago | malware.news
api back database email +7
Distribution of Infostealer Made With Electron 5 hours ago | malware.news
ahnlab applications apps asec +20
Mitigating AI-Powered Cyberthreats With a Proactive ZTNA Security Strategy 6 hours ago | malware.news
ai-powered artificial artificial intelligence capabilities +20
TensorFlow AI models at risk due to Keras API flaw 7 hours ago | malware.news
ai models api arbitrary code article +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Data Security Lead

@ Mastercard | London, England (Angel Lane)
View on infosec-jobs.com

Security Officer L1

@ NTT DATA | Texas, United States of America
View on infosec-jobs.com

Sr. Staff Application Security Engineer

@ Aurora Innovation | Seattle, WA
View on infosec-jobs.com

Senior Penetration Testing Engineer

@ WPP | Chennai
View on infosec-jobs.com

Cyber Security - Senior Software Developer in Test

@ BlackBerry | Bengaluru, Residency Road
View on infosec-jobs.com
View more jobs