To ward off the attack known as PetitPotam, Microsoft advises you to disable NTLM authentication on your Windows domain controller. Image: iStockphoto/ipopba Microsoft is issuing an alert about a threat against Windows domain controllers that would allow attackers to capture NTLM (NT LAN Manager) credentials and certificates. In a noticeRead More →

Another potential mitigation has emerged for the PrintNightmare zero-day virus, which allows low-privileged users to run code as SYSTEM on Windows domain controllers: remove those people from a backwards compatibility group. The zero-day hole was revealed earlier this week after an infosec research firm mistakenly published proof-of-concept exploit code forRead More →