Security News > 2017 > July > Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks (Threatpost)

2017-07-11 17:43

Microsoft today addressed two NTLM-related vulnerabilities privately disclosed by Preempt Security. The flaws allow for credential relay attacks.

News URL

http://threatpost.com/microsoft-addresses-ntlm-bugs-that-facilitate-credential-relay-attacks/126752/

#attack #credential #microsoft #ntlm #threatpost

Related news

Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
Microsoft fixes under-attack privilege-escalation holes in Hyper-V (source)
Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
Week in review: 48k Fortinet firewalls open to attack, attackers “vishing” orgs via Microsoft Teams (source)
Clone2Leak attacks exploit Git flaws to steal credentials (source)
Microsoft Teams phishing attack alerts coming to everyone next month (source)
Microsoft SharePoint Connector Flaw Could've Enabled Credential Theft Across Power Platform (source)
CISA tags Microsoft .NET and Apache OFBiz bugs as exploited in attacks (source)
Hackers spoof Microsoft ADFS login pages to steal credentials (source)
Critical RCE bug in Microsoft Outlook now exploited in attacks (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		380	51	1407	2901	174	4533

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.