https://simeononsecurity.com/tags/token-based-authentication//img/banner.pnghttps://simeononsecurity.com/tags/token-based-authentication/https://simeononsecurity.com/tags/token-based-authentication/Recent content in Token-Based Authentication on simeononsecurity1337 H4X0R RSS GENERATORenSun, 27 Dec 2020 00:00:00 +0000https://simeononsecurity.com/til/2020-12-28/Sun, 27 Dec 2020 00:00:00 +0000 "Computer Security" , "Kerberos Vulnerability" , "Windows Activation" , "Active Directory Compromise" , "Network Security" , "Cybersecurity Exploits" , "Microsoft Security" , "Token-Based Authentication"https://simeononsecurity.com/til/2020-12-28/https://github.com/simeononsecurity/simeononsecurity.com-comments/issues <p><strong>What SimeonOnSecurity learned about and found interesting today</strong></p> <p>SimeonOnSecurity recently learned about two topics in the field of computer security: CVE-2020-17049, also known as the Kerberos Bronze Bit Attack, and Windows Token-Based Activation.</p> <p>The Kerberos Bronze Bit Attack, as explained in a series of blog posts by Netspi and in a post by Trimarcsecurity, is a vulnerability in the Kerberos authentication protocol. This vulnerability could potentially allow an attacker to compromise an Active Directory, which is a central repository for information about an organization&rsquo;s users, computers, and other resources. The deployment of Kerberos S4U changes to address this vulnerability is discussed in a Microsoft support article.</p>