Hi everyone, Alex here again. Today we’re talking about a change in Active Directory authentication that may look small on paper but could have very real operational consequences if administrators are not prepared. In just over a month, the April Windows update will shift Kerberos service tickets to AES encryption by default, moving domains further…
Tag: enterprisesecurity
Secure Boot Certificate Expiration in 2026: What Windows Administrators Need to Know
Hi everyone, Alex here again. Today we’re going to talk about a piece of Windows infrastructure that most people never think about — until it suddenly matters. I’m talking about Secure Boot and the upcoming expiration of the Microsoft 2011 certificate in October 2026. Nothing is going to explode overnight, but if you manage Windows…
Microsoft 365 E7: Microsoft’s Next Big Enterprise Bundle?
Hi everyone, Alex here. Welcome back to the blog. Over the past few weeks I’ve been seeing more and more conversations around a possible Microsoft 365 E7 licence. Nothing official has been released yet, but enough signals have appeared across the ecosystem to start piecing together what Microsoft might be preparing. So I decided to…
When an RODC Goes Off the Grid: A Slow, Painful, Very British Death
Oi, folks — today we’re talking about the slow, painful, deeply awkward death of an RODC that’s been cut off from the domain for far too long. You know that moment when a branch office goes offline, someone says “It’ll be fine, the RODC will handle it,”and you — the only sane person in the…
EchoLeak: When Your Voice Becomes the Exploit (Hi, Cyberpunk, You’re Early)
hi. remember when voice assistants were just fun?“hey Siri, play my sad playlist” or “Alexa, order more coffee”?now imagine your own voice — from a Teams call — being replayed, misused, or even turned against you…yeah. not a dystopian novel. that’s EchoLeak. and it’s real. so what happened exactly? AIM Labs dropped a bomb with…