More

    Windows Themes zero-day could have exposed users to credential theft and more



    Security experts have recently uncovered a Windows Themes spoofing zero-day vulnerability that allows threat actors to steal NTLM credentials.

    Earlier in 2024, Microsoft discovered, and patched, CVE-2024-21320 – a similar vulnerability with a 6.5 severity score (medium). The patch did not address the issue entirely, and could be bypassed, resulting in the discovery of CVE-2024-38030. Microsoft released the fix for this hole in July 2024.

    https://cdn.mos.cms.futurecdn.net/24UwJgyxKCGvKtzZH5ckmN-1200-80.jpg



    Source link

    Latest articles

    spot_imgspot_img

    Related articles

    Leave a reply

    Please enter your comment!
    Please enter your name here

    spot_imgspot_img