Discover the most attractive Windows privileges from an attacker’s perspective: those that permit a direct privilege escalation.
Understanding how an identity-first exploit enabled ransomware attackers to disable Foxconn can open your eyes to possible gaps in your own identity security. Discover how attackers take advantage of complexity in manufacturing organizations—and steps you can take to defend your organization’s business operations.
An Active Directory migration and consolidation project is not just a data move. If you carry over legacy delegation mistakes, group nesting, trust relationships, and overprivileged accounts, you simply recreate risky attack paths. Learn how a security-first approach helps you make your new AD environment more secure.
A quiet AD migration can turn into a noisy outage when RC4-dependent accounts fail. Migration services expert Mike Masciulli helps you understand where RC4-related failures hide—and how to find and fix them before cutover.
Microsoft is deprecating RC4 encryption beginning in April 2026. This post explains the process—and points you to resources that can help.
Learn about the discovery of CVE-2026-26119: why it worked and why you shouldn't underestimate authentication reflection.
Is use of the Windows Remote Management (WinRM) protocol over HTTP inherently bad? Take a nuanced look at why "HTTP = insecure" isn't the whole story—and when HTTPS can actually introduce risk.
One of the most common misconfigurations I encounter in Active Directory environments is a LAN Manager authentication level set to 2 on domain controllers (DCs). If your reason for staying at level 2 is legacy application compatibility, you can move to level 3 today without breaking those applications.