Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows – ITTS

Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

11 September 2023

A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium. The activity has been codenamed Steal-It by Zscaler ThreatLabz.

Source: The Hacker News

Date:

11 September 2023

Categorie(s):

Tag(s):

Cybercriminals, Hashes, Malware, OS, PowerShell

Cyberthreats linked to foreign actors aim to hinder Election Day proceedings5 November 2024
DocuSign’s API used to lure victims into e-signing fake invoices5 November 2024
Schneider Electric ransomware crew demands $125k paid in baguettes5 November 2024
How to Become a Chief Information Officer: CIO Cheat Sheet5 November 2024
Research: Extending corporate life of laptops by just one year can reduce harmful emissions by 25%5 November 2024