Neowin

Protocol vulnerability allows launching malicious Windows Search by just opening Word file

A newly discovered zero-day vulnerability in modern Windows versions allows bad actors to launch a Windows Search window and connect to infected directories using a single Word file. Following reports ...
ZDNet

Vulnerability in Microsoft CTF protocol goes back to Windows XP

CTF, a little-known Microsoft protocol used by all Windows operating system versions since Windows XP, is insecure and can be exploited with ease. According to Tavis Ormandy, a security researcher ...
Dark Reading

CTF Protocol Serves as a Low-Level Way to Take Over Windows Machines

There is a protocol in Windows that has been around since the days of Windows XP, which has been found to be insecure. Tavis Ormandy, a security researcher with Google's Project Zero security team, ...
Infosecurity-magazine.com

Legacy Windows Protocols Still Expose Networks to Credential Theft

A new cybersecurity study has found that legacy Windows communication protocols continue to expose organizations to credential theft, even without exploiting software vulnerabilities. The research, ...
Ars Technica

Looking to bolster Windows ciphers, protocols, and hashes

I've used the Nartac Software IIS Crypto tool* to set the Windows SSL cipher suite order, secure protocols, ciphers, hashes, and key exchanges on newly set up Windows servers running modern ...