Security News > 2025 > March > New Windows zero-day leaks NTLM hashes, gets unofficial patch

New Windows zero-day leaks NTLM hashes, gets unofficial patch

2025-03-25 18:22

Free unofficial patches are available for a new Windows zero-day vulnerability that can let remote attackers steal NTLM credentials by tricking targets into viewing malicious files in Windows Explorer. [...]

News URL

https://www.bleepingcomputer.com/news/security/new-windows-zero-day-leaks-ntlm-hashes-gets-unofficial-patch/

#leak #ntlm #patch #windows #zeroday

Related news

Windows NTLM hash leak flaw exploited in phishing attacks on governments (source)
Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017 (source)
New Windows zero-day exploited by 11 state hacking groups since 2017 (source)
APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373) (source)
EncryptHub linked to MMC zero-day attacks on Windows systems (source)
Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware (source)
Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws (source)
Microsoft: Windows CLFS zero-day exploited by ransomware gang (source)
Microsoft fixes actively exploited Windows CLFS zero-day (CVE-2025-29824) (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.