Tag

Cyber Attack Vulnerability

All articles tagged with #cyber attack vulnerability

"Unveiling the Vulnerability: How Hackers Exploit 'Forced Authentication' to Swipe Windows NTLM Tokens"

Originally Published 2 years ago — by The Hacker News

Cybersecurity researchers have discovered a vulnerability called "forced authentication" that allows hackers to steal a Windows user's NT LAN Manager (NTLM) tokens by tricking them into opening a specially crafted Microsoft Access file. By abusing a legitimate feature in Access that allows users to link to external data sources, attackers can leak NTLM tokens to their server, enabling them to launch relay attacks. Microsoft has released mitigations for the issue, and 0patch has provided unofficial fixes for various Office versions. Additionally, Microsoft plans to discontinue NTLM in Windows 11 in favor of Kerberos for enhanced security.

technology cyber-attack-vulnerability cyber-attack-vulnerability cybersecurity forced-authentication microsoft-access relay-attack windows-ntlm-tokens

Outdated Vulnerability Exploited by Multiple Hacker Groups to Breach US Federal Agency.

Originally Published 2 years ago — by The Hacker News

Multiple threat actors, including a nation-state group, exploited a critical three-year-old security flaw in Progress Telerik to break into an unnamed federal entity in the U.S. The vulnerability, tracked as CVE-2019-18935, relates to a .NET deserialization vulnerability affecting Progress Telerik UI for ASP.NET AJAX that, if left unpatched, could lead to remote code execution. Organizations are recommended to upgrade their instances of Telerik UI ASP.NET AJAX to the latest version, implement network segmentation, and enforce phishing-resistant multi-factor authentication for accounts that have privileged access.

business cyber-attack-vulnerability cve-2019-18935 cyber-attack-vulnerability federal-agency progress-telerik remote-code-execution threat-actors