Microsoft has already begun the removal of NTLM early as the feature is no longer available on Windows 11 24H2 and Server 2025.
Ntlm RSS
All of Microsoft's server and client Windows versions are susceptible to a new NTLM security flaw. An unofficial patch has been released by 0patch.
Microsoft said last year that it wants to improve authentication security by eventually killing off NTLM sometime in the future. Today, the company has announced the deprecation of the feature.
Microsoft released Patch Tuesday updates for Windows 10, 11, and Server earlier today. The one for the Server fixes an NTLM high-traffic bug. But there is no word on the accompanying LSASS crashes.
Microsoft confirmed yesterday that a VPN bug is affecting Windows 10 and 11, as well as Servers. Alongside that, the company has also confirmed that Server systems are also having NTLM traffic spikes.
Microsoft has announced it is taking steps to eventually disable NTLM (NT LAN Manager) for authentication features in Windows 11 and add new features to Kerberos to take its place.
Microsoft has enabled a preview feature by default in the latest Windows 11 Dev Channel build 25206. It is related to improving the security of SMB NTLM authentication and reducing attack surfaces.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is no longer recommending the installation of May Patch Tuesday updates on Domain Controllers because of authentication issues.
Microsoft has released a new Windows Server preview build 25075 today to Insiders. The new build brings an SMB NTLM authentication limiting feature that makes brute-force exploits very challenging.
A new Local Privilege Escalation bug affecting all prevalent versions of Windows OS has received unofficial patches from 0Patch after Microsoft refused to fix the NTLM authenticating protocol.
A new finding by a security researcher suggests that specially crafted Windows 10 themes files can be used to redirect users to an authentication-required site to steal their Microsoft credentials.
A security engineer has discovered a method to steal login credentials from Windows and Mac computers by simply using a Linux-powered USB minicomputer, disguising the device as an Ethernet adapter.