#LegacyProtocols

Microsoft NTLM Zero-Day to Remain Unpatched Until April

by

December 9, 2024 at 05:44PM Microsoft issued guidance to mitigate NTLM relay attacks following the discovery of a zero-day bug affecting all Windows versions, enabling credential theft through malicious files. The bug’s fix is anticipated in April. Organizations are advised to enable Extended Protection for Authentication (EPA) to strengthen defenses against these vulnerabilities. ### Meeting … Read more

Leaky DICOM Medical Standard Exposes Millions of Patient Records

by

November 10, 2023 at 01:12PM Researchers have discovered that around 60 million personal and medical records may have been exposed due to the use of a legacy protocol in medical equipment. The researchers found that many users of the protocol do not implement security controls, leading to data leakage. The protocol does have security measures, … Read more