Security News > 2024 > November > Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
2024-11-14 05:43
A newly patched security flaw impacting Windows NT LAN Manager (NTLM) was exploited as a zero-day by a suspected Russia-linked actor as part of cyber attacks targeting Ukraine. The vulnerability in question, CVE-2024-43451 (CVSS score: 6.5), refers to an NTLM hash disclosure spoofing vulnerability that could be exploited to steal a user's NTLMv2 hash. It was patched by Microsoft earlier this
News URL
https://thehackernews.com/2024/11/russian-hackers-exploit-new-ntlm-flaw.html
Related news
- APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign (source)
- North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks (source)
- Hackers Exploit Webview2 to Deploy CoinLurker Malware and Evade Security Detection (source)
- Hackers exploit ProjectSend flaw to backdoor exposed servers (source)
- Cybercriminals Exploit Popular Game Engine Godot to Distribute Cross-Platform Malware (source)
- Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested (source)
- BootKitty UEFI malware exploits LogoFAIL to infect Linux systems (source)
- Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads (source)
- Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-12 | CVE-2024-43451 | Unspecified vulnerability in Microsoft products NTLM Hash Disclosure Spoofing Vulnerability | 6.5 |