U.S. CISA adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog

Alarms sound over attacks via Microsoft NTLM vulnerability

Attacks targeting government and contractor companies in Poland and Romania via NTLM exploit. Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS1…

U.S. CISA adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple products and Microsoft Windows NTLM vulnerabilities to its Known Exploited… Read more → The post U.S. CISA adds Apple products and Microsoft Windows NTLM flaws to its Known Exploited Vulnerabilities catalog app…

CISA Warns of Active Exploitation of Windows NTLM Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) alerted organizations to active exploitation of a newly disclosed Microsoft Windows vulnerability tracked as CVE-2025-24054. The flaw affects Windows’ NTLM authentication protocol, creating an opportunity for unauthorized attackers to infiltrate systems via a spoofing vulnerability. Overview of the Vulnerability CVE-2025-24054, officially designated as a “Windows NTLM Hash […] The …

CISA adds Windows NTLM hash disclosure spoofing flaw to its Known Exploited Vulnerabilities Catalog

A vulnerability in the Windows NTLM authentication protocol, which is known to have been actively exploited for at least a month, has been added to the US CISA’s Known Exploited Vulnerabilities Catalog. While Microsoft deprecated NTLM last year, it remains widely used. Security researchers discovered the hash disclosure spoofing bug, and Microsoft quietly patched it in March. But the creation of a patch is one thing -- having users install it is…

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download

The US cybersecurity agency has added a medium-severity security vulnerability affecting Windows systems to the list of known exploits. The vulnerability involves NTLM hash leakage, which Microsoft has fixed. Although it is assessed as "unlikely to be exploited", it has been used by active attackers to obtain user passwords and break into systems. Attackers spread this vulnerability through malicious files to collect hash values. Organizations n…

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Adds Three Known Exploited Vulnerabilities to Catalog chayes Apr 17, 2025 Release DateApril 17, 2025 DescriptionCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.CVE-2025-31200 Apple Multiple Products Memory Corruption VulnerabilityCVE-2025-31201 Apple Multiple Products Arbitrary Read and Write VulnerabilityCVE-2025-24054 Microsoft Windows NTLM Hash Disclosure…