Bleeping Computer

Latest NTLM Relay Attack news

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.
Bleeping Computer

Microsoft shares mitigations for new PetitPotam NTLM relay attack

Microsoft has released mitigations for the new PetitPotam NTLM relay attack that allows taking over a domain controller or other Windows servers. PetitPotam is a new method that can be used to conduct ...
ZDNet

Microsoft: Here's how to shield your Windows servers against this credential stealing attack

Microsoft has posted advisory and detailed instructions on protecting Windows domain controllers and other Windows servers from the NTLM Relay Attack known as PetitPotam. The PetitPotam take on the ...
TechRepublic

Microsoft warns of credential-stealing NTLM relay attacks against Windows domain controllers

Microsoft warns of credential-stealing NTLM relay attacks against Windows domain controllers Your email has been sent Microsoft is sounding an alert about a threat against Windows domain controllers ...
Homeland Security Today

Microsoft Windows Active Directory Certificate Services Can Allow for AD Compromise Via PetitPotam NTLM Relay Attacks

Microsoft Windows Active Directory Certificate Services (AD CS) by default can be used as a target for NTLM relay attacks, which can allow a domain-joined computer to take over the entire Active ...
Threat Post

Microsoft Addresses NTLM Bugs That Facilitate Credential Relay Attacks

Microsoft today addressed two NTLM-related vulnerabilities privately disclosed by Preempt Security. The flaws allow for credential relay attacks. NTLM has a long history of serious vulnerabilities and ...