Category: Microsoft

Security Advisory: Critical Vulnerability in CredSSP Allows Remote Code Execution on Servers Through MS-RDP (Video)

In March Patch Tuesday, Microsoft released a patch for CVE-2018-0886, a vulnerability discovered by Preempt researchers. The vulnerability consists of...
Read Now

Advisory: Flaw in Azure AD Connect Software Can Allow Stealthy Admins to Gain Full Domain Control

By: Roman Blachman and Yaron Zinar We recently reviewed a customer’s network and found that 85%(!) of all users in the network...
Read Now

New LDAP & RDP Relay Vulnerabilities in NTLM

Over the past few months, the Preempt research team discovered and reported two Microsoft NT LAN Manager (NTLM) vulnerabilities. These...
Read Now