A critical vulnerability in Microsoft Telnet Server allows remote attackers to bypass authentication entirely, gaining administrative access without credentials. Affecting legacy Windows systems (2000 through Server 2008 R2), this “0-click” flaw manipulates NTLM authentication. No official patch exists, prompting experts to recommend immediate disabling of Telnet, switching to SSH, and tightening network access.
New Phantom Stealer Campaign Hits Windows Machines Through ISO Mounting
Researchers have uncovered a sophisticated phishing campaign originating in Russia that deploys the Phantom information-stealing malware via malicious ISO files. The attack, dubbed “Operation MoneyMount-ISO,”
