A lovely review and takedown of Microsoft's lackadaisical approach to NTLM issues.
At the very least, please disable outbound SMB from your environment, and get signing/encryption (v2/3) going wherever possible.
https://blog.morphisec.com/5-ntlm-vulnerabilities-unpatched-privilege-escalation-threats-in-microsoft
Taggart :donor: /
npub18w…6q6gg
2024-11-21 16:39:19
Author Public Key
npub18wjp9tztznztxlxka5ttn5nz448la7c9ckmvdvlptcupgud3ygdqj6q6ggSeen on
wss://relay.nostr.band