Security news aggregator

Latest coverage for NTLM

Stay updated on NTLM protocol security news - your source for the latest NTLM authentication challenges and solutions in information security.

57 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

NTLM is an authentication protocol used on networks that include systems running the Windows operating system. It stands for NT LAN Manager, which was originally developed by Microsoft and has been used as a security protocol in various versions of Windows. The primary function of NTLM is to allow users to authenticate to a network server in a domain environment, providing a way to prove their identity without sending a password in plain text over the network.

In the context of information security, NTLM is of particular interest because it has been found to have vulnerabilities that could be exploited by attackers. As such, it has often been the subject of security discussions and updates. While NTLM is considered to be less secure than modern protocols like Kerberos, it is still widely used for backward compatibility with legacy systems and applications. It is also frequently encountered during security assessments and penetration testing efforts, where securing against NTLM relay attacks and other potential NTLM-related vulnerabilities is a key concern.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 57 Filtered view
Bank Info Security 3 months, 4 weeks ago

Microsoft Urges Users to Finally Ditch NTLM Authentication

Seeking to Add Urgency, Mandiant Publishes Rainbow Tables for NTLM Key HashesFor nearly 30 years, security experts have warned organizations to ditch the weak NTLM authentication protocol in Windows. But its use persists, even amidst easy and active exploits. Now Google has published rainbow tables for NTLMv1. Will this finally drive holdout organizations to change?

More from Bank Info Security 6 Feb 2026, 8:30 a.m. Authentication Exploit Google Microsoft NTLM

In cybersecurity, the line between a normal update and a serious incident keeps getting thinner. Systems that once felt reliable are now under pressure from constant change. New AI tools, connected devices, and automated systems quietly create more ways in, often faster than security teams can react. This week’s stories show how easily a small mistake or hidden service can turn into a real

More from The Hacker News 20 Jan 2026, 2:17 a.m. Artificial Intelligence Automation Exploit Fortinet Incident Mistake NTLM Tools
Bank Info Security 7 months, 1 week ago

CISA Flags Highly Exploitable Windows SMB Flaw

NTLM Reflection Attack Strikes AgainA three-month old flaw in a network protocol for file sharing used by Microsoft is under active exploitation, warns the U.S. Cybersecurity and Infrastructure Security Agency. The flaw's exploitation bypasses mitigations Microsoft has built over the years to prevent NTLM reflection attacks.

More from Bank Info Security 22 Oct 2025, 11:30 a.m. America CISA Flaw Microsoft Mitigation NTLM Warning

Can a harmless click really lead to a full-blown cyberattack? Surprisingly, yes — and that’s exactly what we saw in last week’s activity. Hackers are getting better at hiding inside everyday actions: opening a file, running a project, or logging in like normal. No loud alerts. No obvious red flags. Just quiet entry through small gaps — like a misconfigured pipeline, a trusted browser feature,

More from The Hacker News 21 Apr 2025, 10:10 p.m. Apple Breach Cyberattack Exploit Facebook Misconfiguration NTLM Spyware

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild

More from The Hacker News 18 Apr 2025, 4:29 p.m. Actively exploited CVE-2025-24054 America CISA CVE Credentials Disclosure Flaw Microsoft NTLM Vulnerability