With the November 2022 Updates for Windows Server, Microsoft implemented Netlogon protocol changes as part of mitigating the vulnerability associated with CVE-2022-38023. With the April 2023 Updates for Windows Server, another vulnerability is addressed in the same context. About CVE-2022-38023 (November 2022) Through this vulnerability, an authenticated adversary could leverage cryptographic protocol vulnerabilities in … Continue reading "The April 2023 Updates provide further urgency to Netlogon RPC Sealing"
When looking at the April 2023 Patch Tuesday today, I noticed ten updates that specifically address vulnerabilities in DNS Server. These vulnerabilities are specific to Domain Controllers running DNS Server (in the default configuration), so this sparked my interest in these updates. About the vulnerabilities Nine DNS Server remote code execution vulnerabilities were addressed: … Continue reading "Ten DNS Server vulnerabilities could lead to Remote Code Execution and Information Disclosure on Domain Controllers with default configurations"
Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. It is a cloud-based service, where agents on Domain Controllers provide signals to Microsoft's Machine Learning (ML) algorithms to detect and report on attacks. Its dashboard allows Active Directory admins to investigate and remediate … Continue reading "What's New in Microsoft Defender for Identity in March 2023"
Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory and through the Microsoft 365 Message Center, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for March 2023: What's Planned … Continue reading "What's New in Azure Active Directory for March 2023"
Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for March 2023: Windows Server 2016 We observed the following update … Continue reading "On-premises Identity-related updates and fixes for March 2023"