all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Windows NTLM token exfiltration possible with forced authentication exploits

Add to bookmarks
Nov. 29, 2023, 4:54 p.m. | SC Staff

SC Magazine feed for Threats www.scmagazine.com

Windows NT LAN Manager tokens could be exposed in a new attack leveraging forced authentication through a custom Microsoft Access file, The Hacker News reports.

access attack authentication exfiltration exploits exposed file hacker lan manager microsoft ntlm reports threat intelligence token tokens vulnerability management windows

Visit resource

More from www.scmagazine.com / SC Magazine feed for Threats

Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug 5 days, 20 hours ago | www.scmagazine.com
agency apt28 attacks bear +37
Novel Kaolin RAT malware distributed in Lazarus Group attacks 5 days, 21 hours ago | www.scmagazine.com
asia attacks distributed fraudulent +16
Infections with abandoned PlugX USB worm continue to be prevalent 5 days, 21 hours ago | www.scmagazine.com
addresses ars technica compromised continue +14
Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359 6 days, 15 hours ago | www.scmagazine.com
adam adam shostack breach modeling +7
How GenAI Can Improve SecOps - Ely Kahn - ESW #359 1 week ago | www.scmagazine.com
aiml can genai secops +2
Indiana water plant hack admitted by Russian hackers 1 week, 1 day ago | www.scmagazine.com
cnn critical-infrastructure-security cyberattack electricity +14
New tool used in China-linked attacks against Asia-Pacific 1 week, 2 days ago | www.scmagazine.com
asia attacks backdoor blacktech +18
Russia’s Sandworm APT linked to attack on Texas water plant 1 week, 6 days ago | www.scmagazine.com
apt attack campaign critical-infrastructure-security +9
Novel Kapeka backdoor leveraged in Sandworm attacks 1 week, 6 days ago | www.scmagazine.com
advanced advanced persistent threat apt44 attacks +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs