Hacking News Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows - Printable Version +- (https://hackmyride.com/forum) +-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211) +--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278) +---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279) +---- Thread: Hacking News Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows (/showthread.php?tid=7311)

Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows - The Hacker News - 09-11-2023 Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium. The activity has been codenamed Steal-It by Zscaler ThreatLabz. "In this campaign, the threat actors steal and exfiltrate NTLMv2 hashes using customized versions of Nishang's  https://thehackernews.com/2023/09/cybercriminals-using-powershell-to.html