Microsoft is deprecating RC4 encryption beginning in April 2026. This post explains the process—and points you to resources that can help. The post How to Audit Your Environment for RC4 Encryption appeared ...

Learn about the discovery of CVE-2026-26119: why it worked and why you shouldn't underestimate authentication reflection. The post What You Need to Know: Windows Admin Center Remote Privilege Escalation (CVE-2026-26119) appeared first ...

Is use of the Windows Remote Management (WinRM) protocol over HTTP inherently bad? Take a nuanced look at why "HTTP = insecure" isn't the whole story—and when HTTPS can actually introduce risk ...

One of the most common misconfigurations I encounter in Active Directory environments is a LAN Manager authentication level set to 2 on domain controllers (DCs). If your reason for staying at level ...

Almost every AD security assessment, penetration test, or architecture conversation ends up containing the recommendation to “switch from unsecured LDAP to LDAPS” for your Active Directory (AD). Working for a software vendor ...

Active Directory is attackers’ favorite path to domain dominance. Learn how mapping your defenses to the NIST Cybersecurity Framework can improve cyber incident response and recovery. The post 25 Years of AD ...

Attackers with certain privileges can abuse Entra Connect hard matching synchronization to take over synchronized Entra ID accounts. The post SyncJacking: Hard Matching Vulnerability Enables Entra ID Account Takeover appeared first on ...

For anyone safeguarding hybrid identity systems, continuous learning and cyber community engagement are critical. Here are our top picks for conferences that deliver a laser-focus on identity security—and the technical knowledge you ...

The fastest way to turn a cyber incident into a business outage is through identity system compromise. Ransomware continues to exploit that fact—and the consequences are real. Here are practical, board-ready steps ...

When misconfigured Service Principal Names (SPNs) and default permissions align, attackers can exploit Kerberos reflection to gain SYSTEM-level access remotely. Even with Microsoft’s security update, Ghost SPNs can still haunt you. Learn ...