Ntlm
The latest Ntlm coverage — news, analysis, and updates from the WindowsNews.AI desk.
80 Fixes in September 2025 Patch Tuesday: SMB Audit Tool, NTFS RCE, and NTLM EoP Patched
Microsoft’s September 2025 Patch Tuesday landed with 80 security fixes, including a novel SMB hardening advisory that provides audit capabilities rather than a traditional vulnerability patch,...
Microsoft’s September Updates Patch Critical NTFS and NTLM Vulnerabilities as Talos Releases Detection Rules
Microsoft’s September 2025 Patch Tuesday landed with 86 security fixes spanning Windows, Office, and a broad set of core services, accompanied by a fresh set of Snort intrusion detection rules from...
Windows NTLM Vulnerability Lets Attackers Escalate Privileges Over the Network — Patch Immediately
Microsoft is urging Windows administrators to patch a critical improper authentication vulnerability in NT LAN Manager (NTLM) that allows an authenticated attacker to elevate privileges over a...
Windows NEGOEX Integer Overflow Lets Attackers Escalate to SYSTEM—Patch Now
Microsoft has released a security update to plug a critical elevation-of-privilege hole in the Windows NEGOEX authentication mechanism. Tracked as CVE-2025-54895, the flaw stems from an integer...
Rockwell Patches Critical SSRF Flaw in ThinManager That Exposes NTLM Hashes to Attackers
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) reissued a high-severity advisory on September 9, 2025, for a server-side request forgery (SSRF) vulnerability in Rockwell...
KB5063880: Microsoft Fortifies Server 2022 Netlogon, Raises Red Flag on June 2026 Secure Boot Expiry
Microsoft’s August 12, 2025 cumulative update for Windows Server 2022 doesn’t just patch bugs—it closes a quartet of remotely exploitable denial-of-service flaws in the Netlogon protocol and...
Patch for Windows Netlogon DoS Vulnerability Triggers NAS and Samba Issues, Secure Boot Deadlines Loom
Windows Server administrators juggling urgent patches and looming firmware deadlines just got a stark reminder that security hardening can break third-party integrations. Microsoft’s July 8, 2025...
Microsoft’s August Patches Fix Kerberos dMSA Vulnerability That Lets Attackers Escalate to Domain Admin
A newly disclosed vulnerability in Windows Server 2025’s delegated Managed Service Accounts (dMSA) feature allows an attacker with initial access to specific Kerberos secrets to escalate to full...
Microsoft Patches Publicly Disclosed ‘BadSuccessor’ Kerberos Zero-Day and Exchange Hybrid Cloud Threat in August 2025 Update
Microsoft’s August 2025 security update patches a publicly disclosed Kerberos privilege escalation flaw and a dangerous Exchange hybrid vulnerability that could let attackers hop from on-premises...
Windows Admins: CVE-2025-53778 Is a Patch-Now NTLM Privilege Escalation That Threatens Entire Domains
Microsoft has silently added CVE-2025-53778 to its Security Update Guide, flagging a improper authentication flaw in the Windows NTLM implementation that permits an authorized attacker to elevate...
Windows File Explorer NTLM Leak: CVE-2025-50154 Exposes Credentials in Stealthy Attacks
A single unassuming ZIP archive can now become a weapon to steal Windows credentials, thanks to a newly patched flaw in Windows File Explorer. Microsoft's March 11, 2025 Patch Tuesday update fixed a...
NTLM hash leak CVE-2025-24054 exploited within days of March 2025 patch
Overview In March 2025, Microsoft released a security update addressing a critical vulnerability in the Windows NT LAN Manager (NTLM) authentication protocol, identified as CVE-2025-24054. Despite...