Detecting and Mitigating NTLM Relay Attacks Targeting Microsoft Domain Controllers | allinfosecnews.com

c

Aug. 3, 2022, 12:57 a.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by CrowdStrike here. Written by Marina Simakov, CrowdStrike. Adversaries often exploit legacy protocols like Windows NTLM that unfortunately remain widely deployed despite known vulnerabilities. The PetitPotam vulnerability, combined with AD-CS relay, is one of the recent severe NTLM relay variations the CrowdStrike researchers have seen, which indicates its high popularity. While the latest Microsoft security update — released on Patch Tuesday, May 10, 2022 — included a ...

attacks controllers domain microsoft ntlm ntlm relay relay targeting

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl

12 Strategic Career Tips for Aspiring CISOs 4 days, 8 hours ago | cloudsecurityalliance.org

abnormal abnormal security can career +18

Cl

CISOs, AI, and OT: A Balancing Act Between Innovation and Protection 4 days, 8 hours ago | cloudsecurityalliance.org

act balancing act ben ciso +19

Cl

Microsoft Copilot for Security: Everything You Need to Know 5 days, 4 hours ago | cloudsecurityalliance.org

ai-powered copilot copilot for security cybersecurity +17

Cl

Cloud Security Alliance Releases Three Papers Offering Guidance for Successful Artificial Intelligence (AI) Implementation 5 days, 9 hours ago | cloudsecurityalliance.org

alliance artificial artificial intelligence best practices +33

Cl

Navigating the Cloud – Beyond “Best Practices” 6 days, 10 hours ago | cloudsecurityalliance.org

architectures best practices beyond businesses +17

Cl

Cyber Defense Magazine Names Cloud Security Alliance’s Certificate of Competence in Zero Trust (CCZT) a … 1 week, 1 day ago | cloudsecurityalliance.org

alliance award build certificate +36

Cl

Defining Cloud Key Management: 7 Essential Terms 1 week, 5 days ago | cloudsecurityalliance.org

access access control breaches cloud +26

Cl

How DSPM Can Help Solve Healthcare Cybersecurity Attacks 1 week, 5 days ago | cloudsecurityalliance.org

access access controls article attacks +41

Cl

Considerations When Including AI Implementations in Penetration Testing 1 week, 5 days ago | cloudsecurityalliance.org

application artificial artificial intelligence ask +15

Security Operations Program Manager

@ Microsoft | Redmond, Washington, United States

View on infosec-jobs.com

Sr. Network Security engineer

@ NXP Semiconductors | Bengaluru (Nagavara)

View on infosec-jobs.com

DevSecOps Engineer

@ RP Pro Services | Washington, District of Columbia, United States

View on infosec-jobs.com

Consultant RSSI H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com

TW Senior Test Automation Engineer (Access Control & Intrusion Systems)

@ Bosch Group | Taipei, Taiwan

View on infosec-jobs.com

Cyber Security, Senior Manager

@ Triton AI Pte Ltd | Singapore, Singapore, Singapore

View on infosec-jobs.com