{ads}

Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

Written By Monday 11 September 2023 Add Comment



September 11, 2023 at 01:24PM

A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium. The activity has been codenamed Steal-It by Zscaler ThreatLabz. "In this campaign, the threat actors steal and exfiltrate NTLMv2 hashes using customized versions of Nishang's 

from The Hacker News https://ift.tt/asJNh4Y

0 Response to "Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads