Security News > 2017 > July > Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

2017-07-11 17:43

Microsoft today addressed two NTLM-related vulnerabilities privately disclosed by Preempt Security. The flaws allow for credential relay attacks.

News URL

http://threatpost.com/microsoft-addresses-ntlm-bugs-that-facilitate-credential-relay-attacks/126752/

#attack #credential #microsoft #ntlm #threatpost

Related news

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download (source)
New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint (source)
How New AI Agents Will Transform Credential Stuffing Attacks (source)
Researchers Expose New Polymorphic Attack That Clones Browser Extensions to Steal Credentials (source)
Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks (source)
Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets (source)
Hidden Threats: How Microsoft 365 Backups Store Risks for Future Attacks (source)
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
Australian pension funds hit by wave of credential stuffing attacks (source)
Microsoft Defender will isolate undiscovered endpoints to block attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		383	52	1433	2959	181	4625

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.