Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

A Must Install Critical Patch for Domain Controllers

November 19, 2014

Microsoft just released a patch for a newly discovered security flaw in the Windows implementation of the Kerberos authentication scheme. Make sure you patch your domain controller(s) immediately. The patch fixes a privileged escalation vulnerability, which has been seen being abused in "limited, targeted attacks," according to Microsoft. This means that an attacker could take a normal user account and elevate its authority to that of a domain administrator. Not a good thing, unless you're the bad guy.

E-mail:   Phone: 703.359.0700
Digital Forensics/Information Security/Information Technology
http://www.senseient.com