CSOonline

Critical Windows LDAP flaw could lead to crashed servers, RCE attacks

LDAPNightmare: If December Patch Tuesday server updates have not yet been installed, it’s time to do so to avoid DoS or RCE attacks on Active Directory domain controllers as shown by PoC exploit.
WinBuzzer

Microsoft January 2026 Patch Tuesday Fixes Actively Exploited DWM Zero-day Alongside 111 Security Flaws

Microsoft has patched 112 vulnerabilities in January 2026, including CVE-2026-20805, a Desktop Window Manager zero-day that attackers are actively exploiting.
CSOonline

The cloud is not your only option: on-prem security still alive and well in Windows Server 2025

Reports of the demise of Windows Active Directory are greatly exaggerated – here’s how Microsoft is supporting AD in its latest server platform. We’ve often heard that on-premises solutions are on ...
Virtualization Review

Windows Server 2025 Is (Almost) Here

The next version of Windows Server is coming soon, and in this article I'll look at some of the improvements and new features. Recently Microsoft held a Windows Server summit, full of (pre-recorded ...
Bleeping Computer

Windows Server 2025 released—here are the new features

Microsoft has announced that Windows Server 2025, the latest version of its server operating system, is generally available starting Friday, November 1st. In January 2024, the company released the ...
Ars Technica

How to restrict a Windows AD account for LDAP auth only?

I'm attempting to set up LDAP auth for our Linux servers (yes, I could use kerberos, but LDAP appears to be sufficient for the moment) against our Active Directory server. I'm able to authenticate the ...