Bleeping Computer

Kerberos AS-REP roasting attacks: What you need to know

Robust passwords remain the cornerstone of online security, even as malicious actors sharpen their attacks. Consider the threat from AS-REP roasting – and the defenses organizations must deploy to ...
ZDNet

Proof-of-concept exploit code published for new Kerberos Bronze Bit attack

Proof-of-concept exploit code has been published this week for a new attack technique that can bypass the Kerberos authentication protocol in Windows environments and let intruders access sensitive ...
Bleeping Computer

Microsoft fixes auth issues on Windows Server, Windows 11 24H2

Microsoft has fixed a known issue causing authentication problems when Credential Guard is enabled on systems using the Kerberos PKINIT pre-auth security protocol. According to Redmond, these ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
CSOonline

How to reset a Kerberos password and get ahead of coming updates

If you haven’t already, now is the time to reset your Kerberos password — take proactive action to ensure that you are one step ahead and prepared nearly a year in advance of future hardening. Do you ...
Computerworld

How to use Kerberos Authentication in a Mixed (Windows and Unix) Environment

The Kerberos authentication method originated at the Massachusetts Institute of Technology in the 1980s, as part of a project called Athena. The project involved integrating the computers on the MIT ...