Free Classifieds at Hot-Web-Ads.com - View Item Content by ID 15572076
Hot-Web-Ads > Communities > News & Events > Item ID 15572076
Item ID 15572076 in Category: Communities - News & Events
Cannot view this item. It could be pending, expired or deleted.
Below item is randomly selected from the same category and may have similar content.
Phishing attacks lead to theft of Windows NTLM authentication codes | |
The cybercriminal group TA577 has recently updated their strategy to hijack accounts by phishing for NTLM (NT LAN Manager) authentication hashes. Recognized for their connections to Qbot and the Black Basta ransomware, TA577 has traditionally focused on deploying malware, but recent actions suggest a shift towards direct theft of authentication credentials. In late February 2024, Proofpoint, an email security company, observed TA577 launching large-scale phishing attacks aimed at capturing NTLM hashes from employees across numerous organizations globally. NTLM hashes are critical for authentication and security within Windows environments. Attackers can use these hashes in several malicious ways, including offline cracking to discover passwords and “pass-the-hash” techniques that bypass the need for the actual password, potentially leading to escalated privileges, account hijackings, and extensive network infiltration. The phishing scheme involves emails that seemingly continue previous conversations (thread hijacking) and carry ZIP files with HTML content. These HTML files are designed to initiate connections to external SMB servers under the attacker’s control, triggering an automatic NTLMv2 Challenge/Response process that leaks the NTLM hashes to the attackers. For more details please visit our website - https://www.grcviewpoint.com/phishing-attacks-lead-to-theft-of-windows-ntlm-authentication-codes/  | |
| Related Link: Click here to visit item owner's website (0 hit) | |
| Target State: New York Target City : New York City Last Update : Oct 11, 2025 6:30 AM Number of Views: 33 | Item Owner : grcviewpoint Contact Email: Contact Phone: + 1 (307) 2432625 |
| Friendly reminder: Click here to read some tips. | |
Hot-Web-Ads > Communities > News & Events > Item ID 15572076
© 2025 Hot-Web-Ads.com
USNetAds.com | GetJob.us | CANetAds.com | UKAdsList.com | AUNetAds.com | INNetAds.com | CNNetAds.com | USAOnlineClassifieds.com
2025-10-16 (0.333 sec)