Threat Post

F5 Big-IP Vulnerable to Security-Bypass Bug

The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into the Big-IP Access Policy Manager or admin console. F5 Networks’ Big-IP Application Delivery ...

Microsoft reminder of next phase of Kerberos RC4 hardening

Microsoft wants to get rid of insecure RC4 encryption. The company points out that the next phase starts in April.
Dark Reading

Flawed Deployments Undermine Kerberos Security

Significant weaknesses in the common configuration of Kerberos-based authentication servers could allow attackers to more easily circumvent security measures in networks that rely on the open ...
Redmond Magazine

Microsoft Declares Death to NTLM with Coming Windows 11 Features

Microsoft this week indicated that it plans to eliminate the need to use the New Technology LAN Manager (NTLM) protocol in Windows 11, with Kerberos taking its place. NTLM use has long been a ...
Dark Reading

Abusing Kerberos for Local Privilege Escalation

As the main authentication protocol for Windows enterprise networks, Kerberos has long been a favored hacking playground for security researchers and cybercriminals alike. While the focus has been on ...
Ars Technica

Tableau - Security - Kerberos and SQL - Does anyone have any experience of this?

It says the Admin tool has a Script you can export to set up the SPNs. Mind you, my knowledge of Kerberos is very limited so the instructions look ok, but may not be "real world ready." I work for a ...
EDN

Tableau 8.3 Extends Enterprise Security with Support for Kerberos

“Many of our customers have asked for Kerberos support to make the Tableau Server experience more delightful,” said Dan Jewett, Vice President of Product Management at Tableau Software. “Tableau ...