Active Directory
The latest Active Directory coverage — news, analysis, and updates from the WindowsNews.AI desk.
Patch CVE-2026-41089: Prioritize Internet-Facing Domain Controllers First
Microsoft’s May 2026 Patch Tuesday brought a stark reminder that network topology matters as much as patch speed. Among the 60+ vulnerabilities fixed this month, CVE-2026-41089 stands out—a...
Sophos Exposes AI Ransomware Toolkit That Automates AD Discovery and EDR Evasion
Sophos researchers have exposed an AI-assisted ransomware toolkit that sharply accelerates Active Directory (AD) enumeration and automates evasion testing against endpoint detection and response...
Patch Critical Netlogon RCE Flaw on Domain Controllers Now
Microsoft's May 2026 Patch Tuesday rollout included a fix for CVE-2026-41089, a critical vulnerability in the Windows Netlogon service that could let attackers execute arbitrary code on domain...
KB5087537's 15-char hostname bug breaks Windows Server 2016 DC discovery, Microsoft confirms
Microsoft has confirmed a critical bug in the Windows Server 2016 May 12, 2026 security update (KB5087537) that breaks domain controller discovery—but only for servers with a hostname that is...
Consultant Risks Domain Corruption by Cloning Windows Server 2019/2022 Without Sysprep
A consultant recently sparked debate after claiming to have changed duplicate SIDs on cloned Windows Server 2019 and 2022 machines using Wittytool Disk Clone instead of the traditional Sysprep or...
Microsoft's Cloud Managed Mailbox Writeback Preview Marks the End of the Last Exchange Server Era
Microsoft has pushed Exchange Cloud Managed Mailbox Writeback into public preview as of May 2026, giving hybrid organizations a clear path to permanently shut down their last on-premises Exchange...
April 2026 Patch Tuesday Causes LSASS Crashes on PAM DCs: Microsoft Issues Emergency Guidance
Microsoft's April 2026 Patch Tuesday has triggered critical LSASS crashes on Privileged Access Management domain controllers, forcing administrators into emergency recovery mode. The security update...
CVE-2026-32072: Microsoft's Active Directory Spoofing Vulnerability and the Critical Role of Confidence Metrics
Microsoft's CVE-2026-32072 security advisory reveals an Active Directory spoofing vulnerability that exposes a fundamental truth about enterprise security. The vulnerability itself—while...
CVE-2026-33826: Critical Active Directory RPC Vulnerability Poses Severe Enterprise Risk
Microsoft's CVE-2026-33826 represents a critical security vulnerability in Active Directory's Remote Procedure Call (RPC) implementation that has been assessed as more likely to be exploited. This...
Exchange Server on AWS: How Managed Microsoft AD Hybrid Edition Enables Practical Hybrid Deployments
Microsoft Exchange Server deployments on AWS are gaining momentum as organizations seek practical alternatives to either maintaining legacy on-premises infrastructure or committing fully to cloud...
Microsoft's March 2026 Patch Fixes Critical Active Directory Vulnerability CVE-2026-25177
Microsoft released a critical security update on March 10, 2026, addressing CVE-2026-25177, an elevation-of-privilege vulnerability in Active Directory Domain Services. The company rates this...
PowerShell GUI RemoteApp Deployment: Authentication & Backup Challenges
Deploying PowerShell-based graphical applications through Microsoft RemoteApp presents a compelling solution for organizations needing to provide Windows-specific tools to non-Windows clients while...