The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is no longer recommending the installation of May Patch Tuesday updates on Domain Controllers because of authentication issues.

A recent report from Microsoft reinforces warns of the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on the ...

As CISA noted, "installation of updates released May 10, 2022, on client Windows devices and non-domain controller Windows Servers will not cause this issue and is still strongly encouraged." "This ...

Microsoft on Wednesday announced that it has updated its "best practices" advice for securing domain controllers. In general, Microsoft wants organizations to use the Azure Active Directory identity ...

SafeBreach researchers demonstrate how attackers can crash Windows domain controllers and build a botnet using unauthenticated RPC and LDAP vulnerabilities. At DEF CON 33, security researchers ...

In two previous articles (here and here) I shared some classic Active Directory mistakes people have made that got their companies into serious trouble. Here’s another mistake that on the face of it ...

A recent report from Microsoft reinforces warnings about the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on ...