Tag
ntlm
Safeguard articles tagged "ntlm" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
CVE-2025-24071 Windows Explorer NTLM Hash Leak
A .library-ms file extracted from a zip archive can leak NTLM hashes without the user opening anything. Breakdown of CVE-2025-24071 and the defensive response.
Mar 12, 20268 min read
Cryptography
Pass-the-hash attack
What is a pass-the-hash attack? Learn how NTLM hash theft enables lateral movement across Windows networks, with real-world examples and mitigation strategies.
Feb 25, 20266 min read
Vulnerability Analysis
Windows NTLM Hash Disclosure CVE-2025-24054: The Protocol That Won't Die
CVE-2025-24054 leaks NTLM hashes through .library-ms files with minimal user interaction. Microsoft patched it in April 2025, but exploitation started almost immediately.
Apr 15, 20256 min read