The Hacker News
Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses
May 21^st 2024 at 09:02

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

By: Newsroom

 Microsoft on Monday confirmed its plans to deprecate NT LAN Manager (NTLM) in Windows 11 in the second half of the year, as it announced a slew of new security measures to harden the widely-used desktop operating system. "Deprecating NTLM has been a huge ask from our security community as it will strengthen user authentication, and deprecation is planned in the second half of 2024," the

The Hacker News
Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes
March 5^th 2024 at 10:25

Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes

By: Newsroom

The threat actor known as TA577 has been observed using ZIP archive attachments in phishing emails with an aim to steal NT LAN Manager (NTLM) hashes. The new attack chain “can be used for sensitive information gathering purposes and to enable follow-on activity,” enterprise security firm Proofpoint said in a Monday report. At least two campaigns taking advantage of this

The Hacker News
Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28's MooBot Threat
February 28^th 2024 at 05:47

Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28's MooBot Threat

By: Newsroom

In a new joint advisory, cybersecurity and intelligence agencies from the U.S. and other countries are urging users of Ubiquiti EdgeRouter to take protective measures, weeks after a botnet comprising infected routers was felled by law enforcement as part of an operation codenamed Dying Ember. The botnet, named MooBot, is said to have been used by a Russia-linked threat actor known as

The Hacker News
Hackers Can Exploit 'Forced Authentication' to Steal Windows NTLM Tokens
November 28^th 2023 at 10:23

Hackers Can Exploit 'Forced Authentication' to Steal Windows NTLM Tokens

By: Newsroom

Cybersecurity researchers have discovered a case of "forced authentication" that could be exploited to leak a Windows user's NT LAN Manager (NTLM) tokens by tricking a victim into opening a specially crafted Microsoft Access file. The attack takes advantage of a legitimate feature in the database management system solution that allows users to link to external data sources, such as a remote

The Hacker News
Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication
October 14^th 2023 at 06:29

Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication

By: Newsroom

Microsoft has announced that it plans to eliminate NT LAN Manager (NTLM) in Windows 11 in the future, as it pivots to alternative methods for authentication and bolster security. "The focus is on strengthening the Kerberos authentication protocol, which has been the default since 2000, and reducing reliance on NT LAN Manager (NTLM)," the tech giant said. "New features for Windows 11 include

FreshRSS

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses

Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes

Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28's MooBot Threat

Hackers Can Exploit 'Forced Authentication' to Steal Windows NTLM Tokens

Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication