Because CVE-2026-41089 is the kind of vulnerability that turns “later” into ransomware Hello. Every few years, Active Directory gets reminded that some components are simply too important to fail quietly. Netlogon is one of them. And CVE-2026-41089 is exactly the type of vulnerability security teams hate seeing: remote code executionno credentials requiredno user interactionSYSTEM privilegesactive…
Tag: infosec
YellowKey is not “BitLocker broken”
It is something far more uncomfortable: the recovery environment became part of the attack surface Hello. For years, BitLocker has been treated almost like a solved problem. Enable TPM.Encrypt the drive.Sleep peacefully. And to be fair, the encryption itself is still solid. But YellowKey changes the conversation in a much uglier way. Because CVE-2026-45585 does…
Kerberos Is Moving to AES by Default: Are Your Domains Ready?
Hi everyone, Alex here again. Today we’re talking about a change in Active Directory authentication that may look small on paper but could have very real operational consequences if administrators are not prepared. In just over a month, the April Windows update will shift Kerberos service tickets to AES encryption by default, moving domains further…
Your SD-WAN May Already Be Targeted: A Critical Cisco Vulnerability Explained
I do not usually write about Cisco. It is not my typical focus, and there is no particular hobby-horse here. But today is one of those days. When a core enterprise networking platform is being actively exploited in the wild, it stops being “just another vendor advisory” and becomes a matter of operational reality. If your…
Microsoft Sentinel — What’s New in January 2026
Oh well, hello there, folks… After a long Christmas break — the kind where even your SOC starts snoring softly and the alert queue feels blissfully distant — we’re finally back to real life. The coffee is strong again.The analysts are sarcastic again.And AI, naturally, is still trying to behave like an employee with far…
CHAPTER 8/8 THE FINAL BLUEPRINT (2026). The Complete Technical Architecture of a Secure AI Platform
0. Prologue: “An AI platform isn’t a model. It’s an organism.” It has:• blood (data),• an immune system (Purview + ZTA),• a nervous system (identity),• a brain (the LLM),• organs (tools/plugins),• muscles (the execution layer),• skin (the output firewall),• memory (vector stores),• an immune response (Defender + analytics),• a skeleton (governance + policies),• metabolism (pipelines),•…
How they hijack Microsoft Teams via tokens (and what to do while everyone sips their coffee)
In short: an attacker does not smash your mailbox to bits, they nick your pass and stroll straight in. It is subtler, neater and a hundred times worse for defenders. If an attacker has a valid token, MFA and passwords become mere decorations. Below is a hard-technical breakdown with a healthy dose of irony. Pass…
Embedded HSMs in the Cloud? Yes, Microsoft Just Went There
TL;DR: Microsoft is moving from centralised HSM clusters to embedded hardware modules built straight into the host silicon. Lower latency, higher throughput, and a new level of “I actually own my keys” confidence. It’s a big shift — for engineers, not marketers. 1. Hook You thought your keys were safe in the cloud? Think again….
Microsoft Teams vs Malicious Links: New Warning System — Because Users Click Anything
Hi again )))) So, today two articles )))) its Friday! Microsoft noticed that people share sketchy links in Teams chats like they’re passing notes in high school. To combat this, they’re rolling out a feature to automatically warn users when a link looks fishy. Because yes, phishing attacks are still the thing. What’s the Deal?…
Windows Defender Firewall Vulnerabilities: When the “Defender” Needs Defending
Hi, so, turns out our good old Windows Defender Firewall isn’t exactly the knight in shining armor. Microsoft just patched four shiny new privilege escalation vulnerabilities that could let a low-level user level up like they just found a cheat code in GTA lol. Yeah, it’s not game over, but it’s definitely multiplayer chaos. The…