kerberos authentication

Microsoft has released an out‑of‑band patch — KB5037422 for Windows Server 2022 (with matching OOB packages for other server SKUs) to address a memory‑leak in the Local Security Authority Subsystem Service (LSASS) that was introduced by the March 12, 2024 security rollup (notably KB5035857 and...

Microsoft has formally moved NTLM (NT LAN Manager) to the deprecation pile and is pressing organizations to adopt Kerberos via the Negotiate stack as the secure default for Windows authentication, while also shipping new auditing, telemetry, and migration tooling to help IT teams find and...

Microsoft’s decision to stop issuing RC4-based Kerberos tickets by default on domain controllers is both overdue and consequential: after more than two decades of using RC4‑HMAC as a compatibility fall‑back in Active Directory, Microsoft will flip Kerberos defaults so domain controllers running...

Microsoft’s Security Response Guide records CVE-2025-60704 as a Windows Kerberos Elevation of Privilege vulnerability, but the public advisory is terse and technical detail remains limited — administrators should treat this as a high‑risk authentication bug requiring prioritized review and...

Microsoft’s recent support bulletin and subsequent community reports have exposed a sharp operational edge of identity hardening: after installing October/September updates on Windows 11 (24H2 and 25H2) and Windows Server 2025, some environments experienced widespread Kerberos and NTLM...

Microsoft has released the KB5062553 update for Windows 11, version 24H2, bringing the OS build to 26100.4652. This cumulative update, dated July 8, 2025, introduces several enhancements and addresses various issues to improve system performance and security. Key Improvements and Fixes: Taskbar...

Here is a summary of the CVE-2025-47978 vulnerability: CVE ID: CVE-2025-47978 Component: Windows Kerberos Type: Denial of Service (DoS) Vulnerability: Out-of-bounds read Attack Vector: An authorized (authenticated) attacker can exploit this vulnerability over a network to cause a denial of...

A chilling new vulnerability has emerged at the core of enterprise Windows infrastructures: CVE-2025-49735, a use-after-free flaw in the Windows KDC Proxy Service (KPSSVC), exposes organizational networks to the risk of remote code execution by unauthorized attackers. As Windows remains the...

Microsoft’s June 2025 Patch Tuesday has brought much-needed relief to enterprise IT administrators, resolving a cluster of severe Windows Server 2025 bugs that had upended Active Directory authentication and network stability for months. This comprehensive update, delivered via KB5060842, not...

When Microsoft's monthly security updates promise stronger defenses, IT professionals and organizations worldwide often breathe a sigh of relief. Yet, as the April 2025 security updates reached Windows Server platforms, a ripple of concern spread through enterprise environments. The update...

CVE-2025-33071 is a critical security vulnerability identified in the Windows Key Distribution Center (KDC) Proxy Service (KPSSVC). This "use-after-free" flaw allows unauthorized attackers to execute arbitrary code remotely over a network, posing significant risks to affected systems...

Microsoft’s history with Windows updates has often been punctuated by instances where critical security patches—introduced to defend against real-world threats—have triggered unexpected issues in enterprise environments. The April 2025 Patch Tuesday release is one such event, and its fallout has...

Windows Server 2025, Microsoft’s much-anticipated enterprise server platform, has been on the receiving end of significant attention—though not always for positive reasons. While the operating system brings an array of security advancements, hybrid cloud integrations, and ambitious AI-capable...

The recent rollout of Microsoft’s April 2025 security updates has cast a distinct shadow over the Windows Server domain controller landscape, triggering significant authentication issues that ripple throughout enterprise environments worldwide. As organizations increasingly rely on robust...

The recent April Patch Tuesday updates have brought an unexpected challenge for enterprise administrators and IT security professionals: broken Kerberos authentication for Windows Hello and certificate-based logins on Active Directory Domain Controllers (DC) running supported versions of Windows...

Over the past several years, Windows Hello for Business (WHfB) has emerged as a cornerstone of Microsoft’s modern authentication approach, prioritizing both convenience and layered security. However, recent developments have drawn fresh scrutiny to the ecosystem’s dependence on complex trust...

Microsoft’s April 2025 Patch Sets New Security Benchmarks for Windows 11 and Windows Server Microsoft’s release cycle rarely passes without scrutiny—but its April 2025 batch of updates is proving especially consequential. With Patch Tuesday’s KB5055523 update targeting Windows 11 version 24H2...

Improper input validation strikes again, this time in the critical Windows Kerberos authentication protocol. CVE-2025-26647, a newly identified elevation of privilege vulnerability, exposes a potential chink in the armor of Windows networks. This flaw, stemming from the way Kerberos processes...

In a significant push to bolster cybersecurity, Microsoft has officially removed the legacy Data Encryption Standard (DES) from Windows 11 24H2 and Windows Server 2025. This decisive step compels enterprises relying on DES for Kerberos authentication to shift to the far more secure Advanced...

On October 8, 2024, Microsoft disclosed a critical security vulnerability identified as CVE-2024-43547 affecting the Windows Kerberos authentication protocol. This vulnerability could lead to an information disclosure, presenting a real threat to systems relying on Kerberos for secure...