Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Microsoft Defender Spoofing Flaw Enables Privilege Escalation and AD Access
Malware and Vulnerabilities
June 14, 2025
gbhackers
A newly disclosed spoofing vulnerability, CVE-2025-26685, affects Microsoft Defender for Identity (MDI), enabling unauthenticated attackers to capture Net-NTLM hashes of Directory Service Accounts (DSAs).
Read More
CVE-2025-26685
Microsoft Defender for Identity
Net-NTLM Hash Capture
Active Directory
Lateral Movement Paths
Publisher
Previous
Spring Framework Flaw Enables Remote File Disclosure vi ...
Malware and Vulnerabilities
Next
Amazon Cloud Cam Flaw Allows Attackers to Intercept and ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/ad77_shutterstock_1947538441.jpeg)
/https://cyware-ent.s3.amazonaws.com/image_bank/d03d_shutterstock_1195533151.jpg)
