Microsoft patches Windows zero-day exploited in attacks on Ukraine
Suspected Russian hackers were caught exploiting a recently patched Windows vulnerability as a zero-day in ongoing attacks targeting Ukrainian entities.
The security flaw (CVE-2024-43451) is an NTLM Hash Disclosure spoofing vulnerability reported by ClearSky security researchers, which can be exploited to steal the logged-in user's NTLMv2 hash by forcing connections to a remote attacker-controlled server.
"Minimal interaction with a malicious file by a user such as selecting (single-click), inspecting (right-click), or performing an action other than opening or executing could trigger this vulnerability.
See more: https://www.bleepingcomputer.com/news/security/microsoft-patches-windows-zero-day-exploited-in-attacks-on-ukraine/
#cybersecurity #patches #zeroday
zCat
npub1zm…5pnd6
2024-11-14 00:47:07
Author Public Key
npub1zm7jduqq2nmxz5wxh4ujtm00g9vxzqa0r82yt7flvm67yje5gfaqa5pnd6Published at
2024-11-14 00:47:07Event JSON
{
"id": "70bf48d69b995e891775faccbf13cd5d8b5af00233b9ce1ed31e5ce725ee4712",
"pubkey": "16fd26f00054f66151c6bd7925edef41586103af19d445f93f66f5e24b34427a",
"created_at": 1731545227,
"kind": 1,
"tags": [
[
"t",
"cybersecurity"
],
[
"t",
"patches"
],
[
"t",
"zeroday"
],
[
"r",
"https://www.bleepingcomputer.com/news/security/microsoft-patches-windows-zero-day-exploited-in-attacks-on-ukraine/"
]
],
"content": "Microsoft patches Windows zero-day exploited in attacks on Ukraine\n\nSuspected Russian hackers were caught exploiting a recently patched Windows vulnerability as a zero-day in ongoing attacks targeting Ukrainian entities.\n\nThe security flaw (CVE-2024-43451) is an NTLM Hash Disclosure spoofing vulnerability reported by ClearSky security researchers, which can be exploited to steal the logged-in user's NTLMv2 hash by forcing connections to a remote attacker-controlled server.\n\n\"Minimal interaction with a malicious file by a user such as selecting (single-click), inspecting (right-click), or performing an action other than opening or executing could trigger this vulnerability.\n\nSee more: https://www.bleepingcomputer.com/news/security/microsoft-patches-windows-zero-day-exploited-in-attacks-on-ukraine/\n\n#cybersecurity #patches #zeroday",
"sig": "3bd68a4042a1ca9b3072d52b32ecec61e851ff70eacac005136a8e7e5c02d2caf42dbb670847d74cd376b580a7e0fd27ae27084f3784a05545c0275e128b7ed4"
}