Other Posts Tagged "Security Measures"

OWASP Top 10: Critical Web Application Security Risks

2023-02-17 (Modified: 2025-01-13) — Written by SimeonOnSecurity — 5 min read

Learn about the most critical web application security risks with the OWASP Top 10 and how to protect against them

A cartoon image of a web developer wearing a superhero cape and holding a shield. The shield is protecting a laptop with a web application interface on the screen.

Today I Learned about CVE-2020-17049 and Windows Token-Based Activation

2020-12-27 (Modified: 2025-01-13) — Written by SimeonOnSecurity — 2 min read

What SimeonOnSecurity learned about and found interesting today

SimeonOnSecurity recently learned about two topics in the field of computer security: CVE-2020-17049, also known as the Kerberos Bronze Bit Attack, and Windows Token-Based Activation.

The Kerberos Bronze Bit Attack, as explained in a series of blog posts by Netspi and in a post by Trimarcsecurity, is a vulnerability in the Kerberos authentication protocol. This vulnerability could potentially allow an attacker to compromise an Active Directory, which is a central repository for information about an organization’s users, computers, and other resources. The deployment of Kerberos S4U changes to address this vulnerability is discussed in a Microsoft support article.