Windows Server Security Archives

Microsoft Security Advisory for Kerberos Hardening on Domain Controllers (CVE-2026-20833)

January 20, 2026 by Dinesh Negi

Microsoft has issued a critical advisory for IT administrators managing Windows Domain Controllers (DCs), targeting the mitigation of CVE-2026-20833, a Kerberos vulnerability that exposes legacy encryption protocols like RC4. This vulnerability allows attackers to request service tickets and potentially compromise service account credentials, particularly on DCs running older or extended support versions of Windows Server. … Read more

Active Directory Built-in Groups Accounts: Power, Risks, and Best Practices

September 10, 2025 by Dinesh Negi

Introduction Most AD administrators are already familiar with the pros and cons of the built-in Administrator account in Active Directory. I’m simply trying to explore and understand it more clearly using diagrams and articles. Active Directory (AD) is the backbone of identity and access management in most enterprises. To simplify administration, Microsoft provides a number … Read more