New Windows Zero-Day Vulnerability Let Attackers Steal Credentials From Victim’s Machine

4 November 2024

A security researcher discovered a vulnerability in Windows theme files in the previous year, which allowed malicious actors to steal Windows users’ credentials. When a theme file specifies a network path for specific properties, like the brand image or wallpaper, Windows automatically sends authenticated network requests to remote hosts, including the user’s NTLM credentials.

Source: GBHackers

Date:

4 November 2024

Categorie(s):

NEWS

Tag(s):

Attackers, Credentials, Cyber Security News, Let, Machines

Will passkeys ever replace passwords? Can they?17 November 2024
How Ransomware Jeopardizes Healthcare Organizations17 November 2024
Are Identity Theft Protection Services Worth the Money? It’s Complicated17 November 2024
Week in review: Microsoft patches actively exploited 0-days, Amazon and HSBC employee data leaked17 November 2024
Google’s Gemini AI Chatbot Keeps Telling Users to Die16 November 2024