A new zero-day vulnerability has been discovered that allows attackersĀ to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. […]
from https://www.bleepingcomputer.com/news/security/new-windows-zero-day-exposes-ntlm-credentials-gets-unofficial-patch/