Microsoft said last year that it wants to improve authentication security by eventually killing off NTLM sometime in the future. Today, the company has announced the deprecation of the feature.
Kerberos RSS
Microsoft released patches for a couple of Kerberos authentication vulnerabilities tracked under CVE-2024-26248 and CVE-2024-29056. Details about its enforcement timeline have been shared.
Microsoft shared an updated DC hardening timeline where it has added new guidance and key dates about the deployment phase. This hardening meant to improve the security of the concerned servers.
Microsoft has confirmed that a buggy Patch Tuesday implementation is causing an LSASS memory leak, leading to reboots of Windows Server DCs when trying to undergo Kerberos authentication.
Microsoft has mentioned Windows 11 "24H2" for the first time, which calls into question some of the leaks, rumors, and reports about 'Windows 12' and its possible 2024 launch date.
Microsoft has announced it is taking steps to eventually disable NTLM (NT LAN Manager) for authentication features in Windows 11 and add new features to Kerberos to take its place.
Microsoft has been enforcing hardening across Kerberos and Netlogon protocols, to protect against security vulnerabilities it discovered in 2021. Reminder for the upcoming Full Enforcement is out.
Microsoft has been enforcing hardening across Kerberos and Netlogon protocols, to protect against security vulnerabilities it discovered in 2021. The third phase is being rolled out.
Microsoft is enforcing hardening across Kerberos and more protocols, to protect against security vulnerabilities it discovered in 2021. Today, it has shared a roadmap outlining the changes.
This week has been quite busy when it comes to Microsoft news. We have a lot to unpack including Windows bugs and their respective fixes, new GPT integrations, and upcoming Windows features.
Microsoft has issued an update today about the third phase security hardening changes deployment for Windows Server Kerberos protocol. These changes are meant to patch a major security flaw.
The latest edition of Microsoft Weekly packs news items related to "Windows 12" leaks, some hidden capabilities in Windows 11, and a bunch of app updates, with a sprinkle of Windows 7 news.
Microsoft has issued a reminder today about the third phase security hardening changes deployment for Windows Server Kerberos protocol. These changes are meant to patch a major security flaw.
_medium.jpg)
In this edition of Microsoft Weekly we have a lot to unpack, including lots of Windows bugs and their associated fixes, changes to Windows 11 in the latest Dev Channel build, and games in Teams (!).
Microsoft has released out-of-band Windows updates in order to patch issues in Kerberos authentication on Domain Controllers. The updates need to be installed manually via Microsoft Update Catalog.
_medium.jpg)
Microsoft has enabled a preview feature by default in the latest Windows 11 Dev Channel build 25206. It is related to improving the security of SMB NTLM authentication and reducing attack surfaces.
A security team has issued an advisory about an apparent design flaw which allows single-factor brute-force attack on Azure Active Directory. However, Microsoft says that this is by design.
As Windows 10 approaches end of life, Microsoft targets more users with full-screen ads
Windows 11 build 27754 is out with modernized Windows Hello, new taskbar features, more
Windows 11 audio bug blasts users with 100% volume, Microsoft confirms
Microsoft's free Bing Wallpaper app for Windows is borderline malware
Recommended by 
We're on Mastodon!
We're on Mastodon!