Bleeping Computer

New Microsoft NTLM Flaws May Allow Full Domain Compromise

Two security vulnerabilities in Microsoft's NTLM authentication protocol allow attackers to bypass the MIC (Message Integrity Code) protection and downgrade NTLM security features leading to full ...
Ars Technica

Strange NTLM authentication errors

Each domain is its own forest root. An IIS server in DomainC needs to mount a a folder from a server in DomainB as a virtual directory for a website. This requires a forest trust. For PCI-DSS ...
Bleeping Computer

Microsoft NTLM Flaws Expose All Windows Machines to RCE Attacks

Two critical vulnerabilities in Microsoft's NTLM authentication protocol consisting of three logical flaws make it possible for attackers to run remote code and authenticate on machines running any ...
CSOonline

NTLM relay attacks explained, and why PetitPotam is the most dangerous

Attackers can intercept legitimate Active Directory authentication requests to gain access to systems. A PetitPotam attack could allow takeover of entire Windows domains. Microsoft Active Directory ...
ZDNet

Microsoft: Here's how to shield your Windows servers against this credential stealing attack

Microsoft has posted advisory and detailed instructions on protecting Windows domain controllers and other Windows servers from the NTLM Relay Attack known as PetitPotam. The PetitPotam take on the ...
CSOonline

Only you can prevent forest trust issues: managing the complexity of merged networks

When two companies merge, a top-to-bottom assessment of settings for Active Directory forests with trusts can eliminate headaches and create a more secure environment In the past, security decisions ...