68888 – Microsoft Defender for Identity: New Detection – Golden ticket using AES encryption (archived)

Cancelled, General Availability, Microsoft Defender for Identity, Web, Worldwide (Standard Multi-Tenant)

check before: 2021-12-01

Product:

Azure Advanced Threat Protection, Defender, Defender for Identity, Microsoft Defender for Identity

Platform:

Online, Web, World tenant

Status:

Cancelled

Change type:

New feature, Admin impact

Links:

Details:

This roadmap item has been cancelled and may be revisited in the future. An alert already exists to detect instances where an attacker downgrades the encryption level of the ticket-granting ticket (TGT) field, but this new alert introduces detection capabilities for when an attacker uses the KRBTGT AES hash to generate the ticket. This alert will find cases where the AES TGT is used for Kerberos TGT, where we don’t see a Kerberos authentication request with the previous service request.

Change Category:
XXXXXXX ...

Scope:
XXXXXXX ...

Release Phase:
General Availability

Created:
2020-11-24

updated:
2022-02-16

the free basic plan is required to see all details. Sign up here

A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.

Get a Plan

Last updated 12 months ago

MC722587 - (Updated) Microsoft Secure Score:… 2. March 2024 Administration check before: 2024-03-16 Product: Defender, Defender for Identity, Defender XDR Platform: World tenant, Online Status: Change type: Admin impact, Feature update, Updated message Links: Details: Microsoft is updating Secure Score actions for Defender for Identity,…
MC718264 - (Updated) Updated Alerts and Incidents… 22. February 2024 Administration check before: 2024-03-07 Product: Defender, Defender XDR Platform: US Instances, World tenant Status: Change type: Admin impact, Feature update, Updated message Links: Details: Microsoft Defender XDR services Identity page's Alerts and Incidents tab is being…
78723 - Microsoft Purview compliance portal: Protect… 30. March 2024 Administration check before: 2024-05-01 Product: Microsoft 365 Apps, Purview Communication Compliance, Purview Double Key Encryption Platform: iOS, Mac, World tenant Status: In development Change type: Links: Details: Double Key Encryption (DKE) provides organizations with a second…
MC734236 - Power Platform - Entra Privilege Identity… 13. March 2024 Administration check before: 2024-03-26 Product: Entra, Intune, Microsoft 365 admin center, Power Automate Platform: Online, World tenant Status: Change type: New feature Links: Details: We are announcing the public preview of the Entra Privilege Identity Management…
MC713362 - New service plan for customers using… 7. February 2024 Administration check before: 2024-02-21 Product: Copilot, Microsoft 365 Apps, Microsoft 365 Copilot, OneDrive, SharePoint Platform: Developer, World tenant Status: Change type: User impact, Admin impact Links: Details: Microsoft Copilot for Microsoft 365 is getting a new…
383016 - Outlook: New Outlook for Windows - Search… 10. February 2024 General Availability check before: 2024-04-01 Product: Outlook, To-Do Platform: Mac, Web, Windows Desktop, World tenant Status: Rolling out Change type: Links: Details: Search across your tasks lists using the Microsoft To Do module in Outlook on the…

You must be logged in to post a comment.

Share to MS Teams

68888 – Microsoft Defender for Identity: New Detection – Golden ticket using AES encryption (archived)

check before: 2021-12-01

Related Posts:

Leave a Reply

cloudscout.one

Schierding.one GmbH

become an evergreen hero

Hey there! We've got some great news - our Basic Plus plan has everything you need to succeed, and it's completely free! So, don't hesitate - take advantage of this amazing opportunity today!

Welcome Back, We Missed You!