Category: NTLM

NTLM Reflection Attack? Not for Preempt Customers

NTLM strikes again! Microsoft released a patch this week, CVE-2019-1384, which addresses a bypass vulnerability that allows attackers to successfully...
Read Now

Security Advisory: Active Directory Open to More NTLM Attacks

By: Yaron Zinar and Marina Simakov Drop The MIC 2 (CVE 2019-1166) & Exploiting LMv2 Clients (CVE-2019-1338) Today, on October 2019 Patch Tuesday,...
Read Now

10 Things You Need to Know About Kerberos

As our research team continues to find vulnerabilities in Microsoft that bypass all major NTLM protection mechanisms, we start to...
Read Now

How to Easily Bypass EPA to Compromise any Web Server that Supports Windows Integrated Authentication

As announced in our recent security advisory, Preempt researchers discovered how to bypass the Enhanced Protection for Authentication (EPA) mechanism...
Read Now

Drop the MIC – CVE-2019-1040

As announced in our recent security advisory, Preempt researchers discovered how to bypass the MIC (Message Integrity Code) protection on...
Read Now