Stay updated on NTLM protocol security news - your source for the latest NTLM authentication challenges and solutions in information security.
Search across headline titles and summaries.
Background for this topic.
NTLM is an authentication protocol used on networks that include systems running the Windows operating system. It stands for NT LAN Manager, which was originally developed by Microsoft and has been used as a security protocol in various versions of Windows. The primary function of NTLM is to allow users to authenticate to a network server in a domain environment, providing a way to prove their identity without sending a password in plain text over the network.
In the context of information security, NTLM is of particular interest because it has been found to have vulnerabilities that could be exploited by attackers. As such, it has often been the subject of security discussions and updates. While NTLM is considered to be less secure than modern protocols like Kerberos, it is still widely used for backward compatibility with legacy systems and applications. It is also frequently encountered during security assessments and penetration testing efforts, where securing against NTLM relay attacks and other potential NTLM-related vulnerabilities is a key concern.
Weekly headline count for the current query.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild