Microsoft finally kills off RC4 encryption cipher blamed for multiple cyberattacks

Microsoft is moving to disable RC4, an encryption cipher embedded in Windows authentication for more than two decades. The decision follows years of documented abuse, repeated warnings from security ...
GovInfoSecurity

Microsoft to Kill RC4 in Kerberos by 2026

Microsoft will disable RC4 by default in Windows Kerberos, pushing organizations to uncover and eliminate longstanding cryptographic weaknesses hidden in legacy ...
Morning Overview on MSN

Microsoft is cutting off a legacy cipher that caused decades of damage

Microsoft is finally ripping out one of the weakest links in its identity stack, cutting off a legacy cipher that attackers have abused for years to walk straight into corporate networks. The move ...

Microsoft will finally kill obsolete cipher that has wreaked decades of havoc

Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years ...

Microsoft will soon deprecate the insecure RC4 encryption algorithm

Microsoft recently confirmed that it is finally deprecating RC4, the encryption method used by the Kerberos authentication protocol for the past three decades. Developed by mathematician ...
Ars Technica

Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”

A prominent US senator has called on the Federal Trade Commission to investigate Microsoft for “gross cybersecurity negligence,” citing the company’s continued use of an obsolete and vulnerable form ...
PC World

Encrypted Web and Wi-Fi in danger as RC4 attacks become more practical

There’s an old saying in the security community: Attacks always get better. The latest case where that holds true is for the aging RC4 cipher that’s still widely used to encrypt communications on the ...
MCPmag

'Broken' RC4 Encryption Disabled in Windows Update

A Microsoft update that will disable the compromised RC4 stream cipher on Windows systems was released on Tuesday. The update is described in Security Advisory 2868725, but it seems to have gone ...
Computerworld

Microsoft continues RC4 encryption phase-out plan with .NET security updates

Microsoft released optional security updates Tuesday for various versions of the .NET Framework that prevent the RC4 encryption algorithm from being used in TLS (Transport Layer Security) connections.
Network World

Encrypted Web and Wi-Fi at risk as RC4 attacks become more practical

There’s an old saying in the security community: Attacks always get better. The latest case where that holds true is for the aging RC4 cipher that’s still widely used to encrypt communications on the ...
Redmond Magazine

Windows Update Will Disable 'Broken' RC4 Encryption

A Microsoft update that will disable the compromised RC4 stream cipher on Windows systems was released on Tuesday. The update is described in Security Advisory 2868725, but it seems to have gone ...