Neowin News Feed for: Ntlm

Microsoft updates security baseline package for Windows Server 2025

Usama Jawad — Tue, 24 Feb 2026 10:32:01 +0000

Microsoft quietly tightens Windows Server 2025 security baseline with key defaults flipped and legacy risks shut down. Read more...

Microsoft is making Windows more secure, here is how IT admins need to prepare

Usama Jawad — Fri, 30 Jan 2026 15:26:01 +0000

Microsoft is disabling a legacy component in Windows, calling it a "major evolution in Windows authentication", but IT admins need to make sure that it doesn't break their infrastructure. Read more...

Microsoft quietly makes a requirement mandatory for Windows 11 25H2 24H2 installations

Sayan Sen — Sun, 02 Nov 2025 23:14:01 +0000

Microsoft released Windows 11 25H2 at the end of last month, and with the new feature update, the company has made a requirement mandatory for OS installations. Read more...

Microsoft shares Windows 11 24H2, Server 2025 new Registry key and Group Policies for NTLM

Sayan Sen — Sun, 07 Sep 2025 10:16:01 +0000

Microsoft has released details regarding a new Registry key and Group Policies for NTLM removal on Windows 11 24H2 and Server 2025. Read more...

Another unofficial NTLM security patch out for Windows 11 24H2, Server 2025, and Windows 10

Sayan Sen — Wed, 26 Mar 2025 13:38:01 +0000

All of Microsoft's server and client Windows versions are susceptible to yet another new NTLM security flaw. An unofficial patch has been released. Read more...

Microsoft begins removing NTLM on Windows 11 24H2, Server 2025 already

Sayan Sen — Fri, 13 Dec 2024 07:36:01 +0000

Microsoft has already begun the removal of NTLM early as the feature is no longer available on Windows 11 24H2 and Server 2025. Read more...

All Windows 11, 10, Server versions affected by a new zero day, unofficial patch out

Sayan Sen — Fri, 06 Dec 2024 14:04:01 +0000

All of Microsoft's server and client Windows versions are susceptible to a new NTLM security flaw. An unofficial patch has been released by 0patch. Read more...

Microsoft confirms NTLM is dead beyond Windows 11 24H2 and Server 2025

Sayan Sen — Tue, 04 Jun 2024 08:42:02 +0000

Microsoft said last year that it wants to improve authentication security by eventually killing off NTLM sometime in the future. Today, the company has announced the deprecation of the feature. Read more...

KB5037782: Microsoft fixes KB5036909 Windows NTLM bug, no word on LSASS crashes

Sayan Sen — Wed, 15 May 2024 06:56:01 +0000

Microsoft released Patch Tuesday updates for Windows 10, 11, and Server earlier today. The one for the Server fixes an NTLM high-traffic bug. But there is no word on the accompanying LSASS crashes. Read more...

Microsoft: KB5036909 Windows Server update causing NTLM traffic, LSASS crash issues on DCs

Sayan Sen — Thu, 02 May 2024 06:58:01 +0000

Microsoft confirmed yesterday that a VPN bug is affecting Windows 10 and 11, as well as Servers. Alongside that, the company has also confirmed that Server systems are also having NTLM traffic spikes. Read more...

Microsoft wants to eventually disable NTLM authentication in Windows 11

John Callaham — Wed, 11 Oct 2023 20:38:04 +0000

Microsoft has announced it is taking steps to eventually disable NTLM (NT LAN Manager) for authentication features in Windows 11 and add new features to Kerberos to take its place. Read more...

Microsoft is making significant improvements to SMB authentication in Windows 11

Usama Jawad — Thu, 22 Sep 2022 10:12:01 +0000

Microsoft has enabled a preview feature by default in the latest Windows 11 Dev Channel build 25206. It is related to improving the security of SMB NTLM authentication and reducing attack surfaces. Read more...

CISA: Don't install Windows Patch Tuesday updates for May on Domain Controllers

Usama Jawad — Tue, 17 May 2022 07:06:01 +0000

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is no longer recommending the installation of May Patch Tuesday updates on Domain Controllers because of authentication issues. Read more...

Microsoft: Latest Windows Server build 25075 makes brute-force hacks super challenging

Sayan Sen — Wed, 16 Mar 2022 18:30:02 +0000

Microsoft has released a new Windows Server preview build 25075 today to Insiders. The new build brings an SMB NTLM authentication limiting feature that makes brute-force exploits very challenging. Read more...

Windows 'RemotePotato0' privilege escalation 0-Day flaw gets unofficial fix after Microsoft refuses

Alap Naik Desai — Thu, 13 Jan 2022 22:28:01 +0000

A new Local Privilege Escalation bug affecting all prevalent versions of Windows OS has received unofficial patches from 0Patch after Microsoft refused to fix the NTLM authenticating protocol. Read more...

New finding says custom Windows 10 themes can be used to steal users' credentials

Abhay V — Mon, 07 Sep 2020 19:24:01 +0000

A new finding by a security researcher suggests that specially crafted Windows 10 themes files can be used to redirect users to an authentication-required site to steal their Microsoft credentials. Read more...

Stealing login details from a PC or Mac is as easy as plugging in a USB computer

Justin Luna — Fri, 09 Sep 2016 14:04:02 +0000

A security engineer has discovered a method to steal login credentials from Windows and Mac computers by simply using a Linux-powered USB minicomputer, disguising the device as an Ethernet adapter. Read more...