Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows – ITTS

Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

11 September 2023

A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium. The activity has been codenamed Steal-It by Zscaler ThreatLabz.

Source: The Hacker News

Date:

11 September 2023

Categorie(s):

Tag(s):

Cybercriminals, Hashes, Malware, OS, PowerShell

20 Best Linux Password Managers in 202428 April 2024
Reliable Web App Pattern: Now Optimizes Azure Migration with Enhanced Infrastructure and Security28 April 2024
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks28 April 2024
Good Security Is About Iteration, Not Perfection.28 April 2024
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 202428 April 2024