Category: Microsoft

Security Advisory: Active Directory Open to More NTLM Attacks

By: Yaron Zinar and Marina Simakov Drop The MIC 2 (CVE 2019-1166) & Exploiting LMv2 Clients (CVE-2019-1338) Today, on October 2019 Patch Tuesday,...
Read Now

Local Admin Passwords: The Hidden Security Risk

You’re a good administrator, and you don’t take shortcuts. You adhere to information security best practices whenever possible, and you...
Read Now

10 Things You Need to Know About Kerberos

As our research team continues to find vulnerabilities in Microsoft that bypass all major NTLM protection mechanisms, we start to...
Read Now

How to Easily Bypass EPA to Compromise any Web Server that Supports Windows Integrated Authentication

As announced in our recent security advisory, Preempt researchers discovered how to bypass the Enhanced Protection for Authentication (EPA) mechanism...
Read Now

Drop the MIC – CVE-2019-1040

As announced in our recent security advisory, Preempt researchers discovered how to bypass the MIC (Message Integrity Code) protection on...
Read Now