Windows: this new zero-day flaw is formidable, here's how to protect yourself

Deal Score0

The zero-day flaw affects all Windows clients and server versions. It allows hackers to steal NTLM credentials via malware. All versions of the OS are affected, from Windows 7 and Server 2008 R2 to the most recent ones like Windows 11 24H2 and Server 2022.

The attack is very simple to execute: a user only needs to view a malicious file in Windows Explorer, whether by opening a shared folder, a booby-trapped USB stick, or even a Downloads folder that contains a file automatically downloaded from a corrupted web page.

However, Windows Server 2025 is not listed as a vulnerable system. Mitja Kolsek, co-founder of 0patchexplains that this version, released in November, is still in the compatibility testing phase and includes improvements related to NTLM.

Microsoft recognizes the weaknesses of NTLM (New Technology LAN Manager) in terms of security. The Redmond firm even announced the gradual abandonment of this functionality. The company recommends users and organizations migrate to more modern and secure alternatives.

If you want to take advantage of a patch and protect yourself against this flaw, simply create a free account on 0patch Central.

Advertising, your content continues below

More Info

Windows: this new zero-day flaw is formidable, here's how to protect yourself

30% reduction on the price of a kilowatt hour excluding VAT of electricity compared to the regulated subscription rate (mint-energie.com)

Promo €450 Asus VivoBook Go 15 R1500FA-NJ244W, inexpensive laptop PC Silver 15″ antibacterial thin light nomadic 10 hours under AMD Ryzen 5 with webcam shutter

Google Pixel 9a: the new design is confirmed via some leaked photos

Pixel: the list of the latest bugs corrected by Google on its smartphones

Promo €729 Asus VivoBook S1504FA-L11474W, inexpensive OLED 15″ nomadic 10h antibacterial laptop PC Black with large fast storage 1TB SSD under AMD Ryzen 5

Leave a reply Cancel reply