News

Bleeping Computer4y

Microsoft fixes new Windows Kerberos security bug in staged rollout

Microsoft has issued security updates to address a Kerberos security feature bypass vulnerability impacting multiple Windows Server versions in a two-phase staged rollout. The vulnerability tracked as ...
ZDNet4y

Proof-of-concept exploit code published for new Kerberos Bronze Bit attack

Proof-of-concept exploit code has been published this week for a new attack technique that can bypass the Kerberos authentication protocol in Windows environments and let intruders access sensitive ...
Ars Technica14y

ApplicationPoolIdentity and Kerberos?

What is needed in order to set up Kerberos delegation using an ApplicationPoolIdentity? I have a web application that will perform auto-logon, but only if Kerberos is set up properly. The machine is ...
CSOonline3y

How to mitigate Active Directory attacks that use the KrbRelayUp toolset

Attackers are using the KrbRelayUp toolset to compromise Kerberos in on-premises Active Directory networks. This two-step process should protect you. Those of you with on-premises Active Directory (AD ...
Bleeping Computer4y

Microsoft fixes Windows Kerberos authentication issues in OOB update

Microsoft has released out-of-band optional updates to fix a known issue that causes Kerberos authentication problems on enterprise domain controllers after installing security updates released ...
ZDNet4y

Windows 10 update problem: We're fixing Kerberos authentication bug, says Microsoft

Microsoft is working on a fix for a bug in last week's patch for a bypass vulnerability in the Kerberos Key Distribution Center (KDC) security feature. Microsoft has flagged the issue affecting ...