Redmond Magazine

Targeting Microsoft ADFS: How Phishing Campaigns Bypass Multi-Factor Authentication to Enable Account Takeover

A sophisticated phishing campaign is targeting organizations that rely on Microsoft’s Active Directory Federation Services (ADFS), using spoofed login pages to harvest credentials and bypass ...
Bleeping Computer

Microsoft NTLM Flaws Expose All Windows Machines to RCE Attacks

Two critical vulnerabilities in Microsoft's NTLM authentication protocol consisting of three logical flaws make it possible for attackers to run remote code and authenticate on machines running any ...
Bleeping Computer

New Microsoft NTLM Flaws May Allow Full Domain Compromise

Two security vulnerabilities in Microsoft's NTLM authentication protocol allow attackers to bypass the MIC (Message Integrity Code) protection and downgrade NTLM security features leading to full ...
Dark Reading

Preempt Shows How to Sidestep EPA Authentication

Security firm Preempt issued an advisory that showed how to conceptually bypass the Enhanced Protection for Authentication (EPA) that prevents attackers from performing a relay of NT Lan Manager (NTLM ...
Finanznachrichten

Preempt Researchers Find Two Critical Vulnerabilities in Microsoft NTLM Allowing Malicious Remote Code Execution on any Windows Machine

Three flaws in Microsoft's proprietary authentication protocol give attackers the ability to bypass all NTLM protection mechanisms SAN FRANCISCO, June 11, 2019, the leading provider of conditional ...