HarfangLab

Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054)

April 17, 2025

CVE-2025-24054, a Windows NTLM hash disclosure vulnerability that Microsoft has issued patches for last month, has been leveraged by threat actors in campaigns targeting …

Resources

Download: Evaluating Password Monitoring Vendors
eBook: A quarter century of Active Directory
Download: Strengthening Identity Security whitepaper

Don't miss

Okta users under attack: Modern phishing kits are turbocharging vishing attacks
One-time SMS links that never expire can expose personal data for years
More employees get AI tools, fewer rely on them at work
Energy sector orgs targeted with AiTM phishing campaign
Exposed training apps are showing up in active cloud attacks

HarfangLab

Windows NTLM vulnerability exploited in multiple attack campaigns (CVE-2025-24054)

Featured news

Resources

Don't miss