Microsoft finally kills off RC4 encryption cipher blamed for multiple cyberattacks

By mid-2026, Windows domain controllers will default to allowing only AES-SHA1, with RC4 disabled unless administrators explicitly re-enable it. Microsoft says eliminating RC4 proved complicated due ...
Network World

Microsoft’s .NET Framework security updates further effort to phase out RC4 encryption

Microsoft released optional security updates Tuesday for various versions of the .NET Framework that prevent the RC4 encryption algorithm from being used in TLS (Transport Layer Security) connections.
Threat Post

Google, Mozilla, Microsoft to Sever RC4 Support in Early 2016

Google and Mozilla today announced they’ve settled on a timeframe to permanently deprecate the shaky RC4 encryption algorithm. Google, Microsoft and Mozilla today announced they’ve settled on a ...
HHS

Microsoft to Kill RC4 in Kerberos by 2026

Microsoft is officially moving to shut the door on RC4 - a legacy cryptographic cipher that has quietly persisted inside Windows authentication environments for decades - and forcing organizations to ...
Ars Technica

Noose around Internet’s TLS system tightens with 2 new decryption attacks

The noose around the neck of the Internet’s most widely used encryption scheme got a little tighter this month with the disclosure of two new attacks that can retrieve passwords, credit card numbers ...