CVE-2025-24054 - BetaNews

Articles about CVE-2025-24054

CISA adds Windows NTLM hash disclosure spoofing flaw to its Known Exploited Vulnerabilities Catalog

5 months ago

Tweet
1 Comment

A vulnerability in the Windows NTLM authentication protocol, which is known to have been actively exploited for at least a month, has been added to the US CISA’s Known Exploited Vulnerabilities Catalog.

While Microsoft deprecated NTLM last year, it remains widely used. Security researchers discovered the hash disclosure spoofing bug, and Microsoft quietly patched it in March. But the creation of a patch is one thing -- having users install it is something else. By adding the vulnerability, tracked as CVE-2025-24054, to its catalog, CISA is raising aware that action needs to be taken.

Continue reading →

Articles about CVE-2025-24054

CISA adds Windows NTLM hash disclosure spoofing flaw to its Known Exploited Vulnerabilities Catalog

Recent Headlines

Microsoft is ready to badger Microsoft 365 subscribers to renew via a full screen nag

Business leaders fear Gen Z employees may leak company secrets for likes and lols

HitPaw launches FotorPea 5 and VikPea 5, bringing AI smarts to its photo and video editors

Google tests fingerprinting block to boost Chrome Incognito Mode privacy

Mastodon to roll out post quoting with powerful protection options

Microsoft unbundles Teams from Office 365 to avoid EU fine

Microsoft helps out app developers by wiping out Store fees

Most Commented Stories

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

As Windows 10 reaches end of life, Windows 11 is LOSING market share

The brilliant Windows 12 is everything Windows 11 isn't -- and the Microsoft OS we deserve

Why using a VPN is becoming more important than ever

Age verification laws are killing web traffic

Forget Tiny11, Nano11 takes Windows 11 debloating to the next level

Microsoft is rolling out Windows 11 25H2