Microsoft to disable NTLM by default in future Windows releases

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases ...
TechBooky

Microsoft To Turn Off NTLM By Default In Future Windows

Cyber Security News In order to prioritise more secure Kerberos-based authentication and due to security flaws that leave ...
Infosecurity-magazine.com

NTLM Hash Exploit Targets Poland and Romania Days After Patch

A vulnerability allowing attackers to leak NTLM authentication hashes with minimal user interaction has been actively exploited just days after Microsoft released a patch. The flaw, tracked as ...
Dark Reading

OPA for Windows Vulnerability Exposes NTLM Hashes

Organizations using Open Policy Agent (OPA) for Windows should consider updating to v0.68.0 or later to protect against an authentication hash leakage vulnerability identified in all earlier versions ...
vInfrastructure

NTLM v1 is being removed in recent Windows versions

Finally, with Windows Server 2025 and Windows 11 24H2, Microsoft is taking a definitive step to eliminate an historical security weakness: NTLM v1 is being completely removed! It was already disabled ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...