When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Security experts have recently uncovered a Windows Themes spoofing zero-day vulnerability that allows threat actors to steal NTLM credentials.
Microsoft released the fix for this hole in July 2024.
“Exploitation of this zero-day is identical to the previous ones previously reported by Akamai,” Acros said.
The vulnerability can be exploited rather easily, although it does require some user interaction, the researchers explained.
It’s not entirely without user interaction, they told the publication.
