Kerberos
The latest Kerberos coverage — news, analysis, and updates from the WindowsNews.AI desk.
Microsoft's Kerberos Security Overhaul: RC4 to AES-SHA1 Default Change Explained
Microsoft is implementing one of the most significant security changes in Windows Server history by flipping the default Kerberos encryption algorithm from the vulnerable RC4 to the more secure...
Microsoft Sets November 2024 as First Phase for Active Directory RC4-to-AES Migration
Microsoft's decision to phase out the RC4 cipher from Active Directory authentication marks a decisive response to decades of risky backward compatibility—but it also forces a hard reckoning for...
AWS DataSync Now Supports Kerberos for SMB: Windows Security Upgrade
Amazon Web Services has significantly enhanced its DataSync service with Kerberos authentication support for SMB file locations, marking a crucial development for Windows-centric organizations...
Microsoft merges JIT admin elevation with Kerberos PAC hardening to block credential theft attacks
Microsoft's latest security guidance represents a significant evolution in Windows authentication hardening, bringing together two critical security initiatives that have been developing for years....
Windows Server 2025 Kerberos Breakage: Critical AD Issue in Mixed Environments
Microsoft's Windows Server 2025 release is causing significant authentication disruptions for organizations attempting to integrate the new domain controllers into existing Active Directory...
Senator Wyden Demands FTC Investigation Into Microsoft’s Insecure Defaults Following Ascension Ransomware Attack
A US Senator is demanding a federal investigation into Microsoft’s security practices after default system configurations were blamed for a devastating ransomware attack that paralyzed one of...
Microsoft’s September Patches Put a Target on SMB and HPC—81 CVEs, One Public Disclosure
Microsoft’s September 2025 security update lands with 81 freshly patched vulnerabilities, and the mix is anything but quiet: a publicly disclosed Server Message Block (SMB) elevation-of-privilege...
Microsoft’s September 2025 Patch Tuesday Delivers Emergency RCE Fixes and Starts DES Removal from Kerberos
Microsoft’s September 2025 Patch Tuesday landed on September 9 with a massive bundle of security updates that demand immediate attention from administrators. The release addresses dozens of...
Microsoft’s September 2025 Patch Tuesday Delivers 80 Fixes and SMB Audit Tools as Critical Deadlines Loom
Microsoft shipped roughly 80 security fixes in its September 2025 Patch Tuesday release, tackling critical remote code execution flaws in Office, NTFS, and Hyper‑V while quietly rolling out a new...
KB5065426 Arrives to Fix Windows 11’s NDI Stutter and UAC Prompt Nightmare
Microsoft’s September 2025 Patch Tuesday cumulative update KB5065426 for Windows 11 24H2 finally puts an end to two month-long regressions that have plagued streamers and enterprise admins alike:...
Microsoft’s September 2025 Update for Windows 11 24H2 Fires Urgent Secure Boot Expiration Warning
The September 2025 cumulative update for Windows 11 version 24H2, KB5065426 (OS Build 26100.6584), breaks new ground not for its fixes, but for the urgency of its operational advisory: Microsoft’s...
Windows NTLM Vulnerability Lets Attackers Escalate Privileges Over the Network — Patch Immediately
Microsoft is urging Windows administrators to patch a critical improper authentication vulnerability in NT LAN Manager (NTLM) that allows an authenticated attacker to elevate privileges over a...