Threat Post

Microsoft Warns Customers Away From SHA-1 and RC4

The RC4 and SHA-1 algorithms have taken a lot of hits in recent years, with new attacks popping up on a regular basis. Many security experts and cryptographers have been recommending that vendors ...
TechSpot

Microsoft will soon deprecate the insecure RC4 encryption algorithm

About time: Microsoft introduced support for the RC4 stream cipher in Windows 2000 as the default authentication algorithm for the Active Directory services. The system has been insecure for even ...
Hosted on MSN

Microsoft is cutting off a legacy cipher that caused decades of damage

Microsoft is finally ripping out one of the weakest links in its identity stack, cutting off a legacy cipher that attackers have abused for years to walk straight into corporate networks. The move ...
ZDNet

RC4 NOMORE crypto exploit used to decrypt user cookies in mere hours

A fresh warning concerning the use of RC4 to support secure communication channels online has been issued after researchers were able to exploit the protocol to decrypt user data in mere hours.
Hosted on MSN

Microsoft finally kills off RC4 encryption cipher blamed for multiple cyberattacks

RC4 has been exploited in high-profile attacks across enterprise Windows networks Kerberoasting exploits weaknesses in Active Directory, allowing attackers to perform offline password cracking ...
Computerworld

Microsoft continues RC4 encryption phase-out plan with .NET security updates

Microsoft released optional security updates Tuesday for various versions of the .NET Framework that prevent the RC4 encryption algorithm from being used in TLS (Transport Layer Security) connections.