Research Snipers

Microsoft prepares RC4 shutdown with Windows update

The January 2026 updates will begin the phaseout of RC4 encryption in the Kerberos protocol for Windows Server. The trigger ...
ZDNet

Proof-of-concept exploit code published for new Kerberos Bronze Bit attack

Proof-of-concept exploit code has been published this week for a new attack technique that can bypass the Kerberos authentication protocol in Windows environments and let intruders access sensitive ...
Campus Technology

Microsoft Joins MIT Kerberos Consortium

The MIT Kerberos Consortium has added Microsoft to its ranks of formal industry supporters. The company joined the group Monday as a founding sponsor, gaining a seat on the executive board, which also ...
Threat Post

Kerberos Authentication Spoofing: Don’t Bypass the Spec

Yaron Kassner, CTO at Silverfort, discusses authentication-bypass bugs in Cisco ASA, F5 Big-IP, IBM QRadar and Palo Alto Networks PAN-OS. Authentication is the front gate to security systems, so if ...

Mandiant pushes organizations to dump insecure NTLMv1 by releasing a way to crack it

Google’s Mandiant security division has come up with an unusual tactic to persuade organizations to stop using the aged and ...