Bleeping Computer

New Microsoft NTLM Flaws May Allow Full Domain Compromise

Two security vulnerabilities in Microsoft's NTLM authentication protocol allow attackers to bypass the MIC (Message Integrity Code) protection and downgrade NTLM security features leading to full ...
CSOonline

Take action now to plug Windows Themes vulnerability, says expert

Yet another vulnerability has popped up in the way Windows handles the Themes that employees download in hopes of getting a snazzier desktop. But an expert says the impact of the hole could be blunted ...
CSOonline

Mitre, Microsoft differ on how severe MS Office flaw really is

There is a distinct difference of opinion on the level of harm a newly revealed Microsoft Office vulnerability exposing NT Lan Manager (NTLM) hashes, being tracked as CVE-2024-38200, could potentially ...