Microsoft to disable NTLM by default in future Windows releases

vm_admin
Microsoft to disable NTLM by default in future Windows releases

By Sergiu Gatlan
Publication Date: 2026-01-30 17:08:00

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks.

NTLM (short for New Technology LAN Manager) is a challenge-response authentication protocol introduced in 1993 with Windows NT 3.1 and is the successor to the LAN Manager (LM) protocol.

Kerberos has superseded NTLM and is now the current default protocol for domain-connected devices running Windows 2000 or later. While it was the default protocol in older Windows versions, NTLM is still used today as a fallback authentication method when Kerberos is unavailable, even though it uses weak cryptography and is vulnerable to attacks.

Wiz

Since its release, NTLM has been widely exploited in NTLM relay attacks (where threat actors force compromised network devices to authenticate against attacker-controlled servers) to escalate privileges and take complete control over the…

Related Posts

Microsoft Outlook has a new ‘critical’ flaw that spreads malware easily – MSN

Microsoft Outlook has a new ‘critical’ flaw that spreads malware easily  MSN Article Source http://www.msn.com/en-us/technology/software/microsoft-outlook-has-a-new-critical-flaw-that-spreads-malware-easily/ar-AA1xouPn?ocid\u003dBingNewsVerp\u0026apiversion\u003dv2\u0026noservercache\u003d1\u0026domshim\u003d1\u0026renderwebcomponents\u003d1\u0026wcseo\u003d1\u0026batchservertelemetry\u003d1\u0026noservertelemetry\u003d1 Facebook Twitter Pinterest LinkedIn Digg Tumblr…