A Windows vulnerability that exposes NTLM hashes using .library-ms files is now actively exploited ... and 'xd.link,' which leverage older NTLM hash leak flaws and are most likely included for ...

Once a user interacts with the file – even by simply navigating to its folder – Windows initiates an SMB authentication request, leaking the NTLMv2-SSP hash to an attacker-controlled server. Although ...

Regional APT Threat Situation Overview In March 2025, the global threat hunting system of NSFOCUS Fuying Laboratory ...

During the investigation, the researchers noticed in the Windows Registry of the compromised ... Ultimately, the malware uses ‘certutil.exe’ to hash the files and exfiltrates them using ...

Linux has plenty of native archive managers that are free, reliable, and surprisingly easy to use. Unlike Windows, where ...

The Windows flaw in question was CVE-2025-24054, an NTLM hash-leaking vulnerability that ... Inside were four booby-trapped files, including a .library-ms file that exploited CVE-2025-24054.

ESET researchers publish an analysis of Spellbinder, a lateral movement tool used to perform adversary-in-the-middle attacks.

Members of the World Uyghur Congress living in exile were targeted with a spear phishing campaign deploying surveillance ...

This GitHub Action generates a unique key (file hash) from one or more files for caching. It works on Linux, macOS, and Windows runners. Simply generates a hash of the given entry. If the content of ...

A visit to LuLu's in Redding brought out tales of its most famous diner, the late Merle Haggard, and some history on the ...

A vulnerability in Windows that exposes NTLM hashes via .library-ms files is currently being actively exploited ... it is now considered insecure due to vulnerabilities such as replay attacks and hash ...

In recent years, threat actors have found various methods to exploit the technology, such as pass-the-hash and relay attacks, to extract NTLM hashes for follow-on attacks. "Microsoft Windows NTLM ...