New PetitPotam attack allows take over of Windows domains July 23, 2021 https://www.bleepingcomputer.com/ne...m-attack-allows-take-over-of-windows-domains/
Microsoft shares mitigations for new PetitPotam NTML relay attack July 24, 2021 https://www.bleepingcomputer.com/ne...gations-for-new-petitpotam-ntml-relay-attack/
Enterprises Warned of New PetitPotam Attack Exposing Windows Domains July 26, 2021 https://www.securityweek.com/enterprises-warned-new-petitpotam-attack-exposing-windows-domains
Windows “PetitPotam” network attack – how to protect against it https://nakedsecurity.sophos.com/2021/07/26/windows-petitpotam-network-attack-how-to-protect-against-it/
Windows PetitPotam attacks can be blocked using new method August 2, 2021 https://www.bleepingcomputer.com/ne...otam-attacks-can-be-blocked-using-new-method/
Windows PetitPotam vulnerability gets an unofficial free patch August 6, 2021 https://www.bleepingcomputer.com/ne...-vulnerability-gets-an-unofficial-free-patch/
Microsoft Windows Active Directory Certificate Services can allow for AD compromise via PetitPotam NTLM relay attacks Vulnerability Note VU#405600 August 2, 2021 (Updated: August 4, 2021) https://kb.cert.org/vuls/id/405600
Windows security update blocks PetitPotam NTLM relay attacks August 10, 2021 https://www.bleepingcomputer.com/ne...-update-blocks-petitpotam-ntlm-relay-attacks/
New unofficial Windows patch fixes more PetitPotam attack vectors August 19, 2021 https://www.bleepingcomputer.com/ne...s-patch-fixes-more-petitpotam-attack-vectors/
LockFile ransomware uses PetitPotam attack to hijack Windows domains August 20, 2021 https://www.bleepingcomputer.com/ne...-petitpotam-attack-to-hijack-windows-domains/ Symantec: LockFile: Ransomware Uses PetitPotam Exploit to Compromise Windows Domain Controllers
LockFile ransomware’s box of tricks: intermittent encryption and evasion https://news.sophos.com/en-us/2021/08/27/lockfile-ransomwares-box-of-tricks-intermittent-encryption-and-evasion/…