Morning Overview on MSN

CISA added the actively exploited Windows Netlogon flaw to its must-patch catalog, ordering federal agencies to fix domain controllers now

Federal agencies running Windows domain controllers face a hard deadline after the Cybersecurity and Infrastructure Security ...
Redmond Magazine

How To Replace an Aging Domain Controller

If the hardware behind your domain controllers has become outdated, here's a step-by-step guide to performing a hardware refresh. Although most of the resources on my network are virtual, I have a ...
Campus Technology

Reports Highlight Domain Controllers as Prime Ransomware Targets

A recent report from Microsoft reinforces warnings about the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on ...
SecurityWeek

Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs

Hackers are exploiting a critical-severity Windows Netlogon vulnerability (CVE-2026-41089) for remote code execution.
Bleeping Computer

New Windows Server updates cause domain controller freezes, restarts

Microsoft is investigating LSASS memory leaks (caused by Windows Server updates released during the November Patch Tuesday) that might lead to freezes and restarts on some domain controllers. LSASS ...
Ars Technica

New Windows exploit lets you instantly become admin. Have you patched?

Researchers have developed and published a proof-of-concept exploit for a recently patched Windows vulnerability that can allow access to an organization’s crown jewels—the Active Directory domain ...
Redmond Magazine

Microsoft Highlights Domain Controllers as Prime Ransomware Targets

Microsoft is reinforcing warnings about the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on the persistent ...
Neowin

CISA: Don't install Windows Patch Tuesday updates for May on Domain Controllers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is no longer recommending the installation of May Patch Tuesday updates on Domain Controllers because of authentication issues.
Ars Technica

Domain controller behind a NAT? Should I use a .local domain?

I need to stand up a domain controller as a prerequisite for another piece of software (so there is no real desire to have AD set up other than to get this other software up and running). If I was ...
Bleeping Computer

CISA warns not to install May Windows updates on domain controllers

As CISA noted, "installation of updates released May 10, 2022, on client Windows devices and non-domain controller Windows Servers will not cause this issue and is still strongly encouraged." "This ...
TechRepublic

Microsoft warns of credential-stealing NTLM relay attacks against Windows domain controllers

To ward off the attack known as PetitPotam, Microsoft advises you to disable NTLM authentication on your Windows domain controller. Microsoft is sounding an alert about a threat against Windows domain ...
The Journal

Reports Point to Domain Controllers as Prime Ransomware Targets

A recent report from Microsoft reinforces warns of the critical role Active Directory (AD) domain controllers play in large-scale ransomware attacks, aligning with U.S. government advisories on the ...