Bleeping Computer

New Windows zero-day exposes NTLM credentials, gets unofficial patch

A new zero-day vulnerability has been discovered that allows attackers to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. The flaw was ...
Ars Technica

Windows RDP lets you log in using revoked passwords. Microsoft is OK with that.

From the department of head scratches comes this counterintuitive news: Microsoft says it has no plans to change a remote login protocol in Windows that allows people to log in to machines using ...
Forbes

Microsoft Windows Security Bypass — Hello Hackers Use Own Faces

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This story has been updated on August 59with a statement from ...