Windows NTLM token exfiltration possible with forced authentication exploits

29 November 2023

Windows NT LAN Manager tokens could be exposed in a new attack leveraging forced authentication through a custom Microsoft Access file, The Hacker News reports. Threat actors could conduct the intrusion by exploiting Access’ linked table feature by adding an .accdb file containing a remote SQL Server database link to a Microsoft Word document, a report from Check Point revealed.

Source: SC Magazine

Date:

29 November 2023

Categorie(s):

NEWS

Tag(s):

IT, Microsoft, NTLM, OS, Windows

RSAC: Decoding US Government Plans to Shift the Software Security Burden7 May 2024
Law enforcement indicts mastermind behind LockBit ransomware gang7 May 2024
News live: Russian hacker sanctioned; China blames Australia for jet flare encounter7 May 2024
Wiz closes mammoth $1B round at $12B valuation to grow its cloud security platform7 May 2024
AI meets security: Strategic insights from theCUBE at RSAC Day 27 May 2024