Vue lecture

↗️

Microsoft Will Finally Kill Obsolete Cipher That Has Wrecked Decades of Havoc

✇Slashdot
Par :BeauHD
An anonymous reader quotes a report from Ars Technica: Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years following more than a decade of devastating hacks that exploited it and recently faced blistering criticism from a prominent US senator. When the software maker rolled out Active Directory in 2000, it made RC4 a sole means of securing the Windows component, which administrators use to configure and provision fellow administrator and user accounts inside large organizations. RC4, short for Rivist Cipher 4, is a nod to mathematician and cryptographer Ron Rivest of RSA Security, who developed the stream cipher in 1987. Within days of the trade-secret-protected algorithm being leaked in 1994, a researcher demonstrated a cryptographic attack that significantly weakened the security it had been believed to provide. Despite the known susceptibility, RC4 remained a staple in encryption protocols, including SSL and its successor TLS, until about a decade ago. [...] Last week, Microsoft said it was finally deprecating RC4 and cited its susceptibility to Kerberoasting, the form of attack, known since 2014, that was the root cause of the initial intrusion into Ascension's network. "By mid-2026, we will be updating domain controller defaults for the Kerberos Key Distribution Center (KDC) on Windows Server 2008 and later to only allow AES-SHA1 encryption," Matthew Palko, a Microsoft principal program manager, wrote. "RC4 will be disabled by default and only used if a domain administrator explicitly configures an account or the KDC to use it." [...] Following next year's change, RC4 authentication will no longer function unless administrators perform the extra work to allow it. In the meantime, Palko said, it's crucial that admins identify any systems inside their networks that rely on the cipher. Despite the known vulnerabilities, RC4 remains the sole means of some third-party legacy systems for authenticating to Windows networks. These systems can often go overlooked in networks even though they are required for crucial functions. To streamline the identification of such systems, Microsoft is making several tools available. One is an update to KDC logs that will track both requests and responses that systems make using RC4 when performing requests through Kerberos. Kerberos is an industry-wide authentication protocol for verifying the identities of users and services over a non-secure network. It's the sole means for mutual authentication to Active Directory, which hackers attacking Windows networks widely consider a Holy Grail because of the control they gain once it has been compromised. Microsoft is also introducing new PowerShell scripts to sift through security event logs to more easily pinpoint problematic RC4 usage. Microsoft said it has steadily worked over the past decade to deprecate RC4, but that the task wasn't easy. "The problem though is that it's hard to kill off a cryptographic algorithm that is present in every OS that's shipped for the last 25 years and was the default algorithm for so long, Steve Syfuhs, who runs Microsoft's Windows Authentication team, wrote on Bluesky. "See," he continued, "the problem is not that the algorithm exists. The problem is how the algorithm is chosen, and the rules governing that spanned 20 years of code changes."

Read more of this story at Slashdot.

  •  
  • ↗️
↗️

Attentat à Sydney : comment l’Australie encadre-t-elle les armes à feu ?

✇Le Figaro - Actualité en direct et informations en continu
DÉCRYPTAGE - Après l’attentat antisémite sur la plage de Bondi, le gouvernement australien envisage de durcir une législation déjà parmi les plus strictes du monde.

© DAVID GRAY / AFP

Adopté après la tuerie de Port Arthur, le National Firearms Agreement a profondément transformé la réglementation australienne. 
  •  
  • ↗️
↗️

Nicolás Maduro compare le président élu du Chili à Adolf Hitler et l’appelle à «respecter les Vénézuéliens»

✇Le Figaro - Actualité en direct et informations en continu
Le président vénézuélien a comparé lundi le programme politique de José Antonio Kast, le nouveau président élu du Chili, à celui d’Adolf Hitler.

© Leonardo Fernandez Viloria / REUTERS

Le président vénézuélien Nicolás Maduro à Caracas, le 10 décembre 2025.
  •  
  • ↗️
↗️

Pourquoi l’IA retarde l’onde de choc de la guerre tarifaire sur la croissance mondiale

✇Courrier international - Actualités France et Monde, vidéos, infographies
Après l’ouverture des hostilités douanières par le président américain en avril, les économistes prédisaient un séisme mondial. Il ne s’est pas produit. Pour le “Wall Street Journal”, les investissements massifs dans l’intelligence artificielle ont simplement reporté la déflagration de quelques mois.

© PHOTO BRENDAN SMIALOWSKI/AFP

Le 2 avril 2025, le président américain Donald Trump dévoilait ses “droits de douane réciproques” au “jour de la libération”, à la Maison-Blanche.
  •  
  • ↗️
↗️

Ces missiles et Kalachnikov détournés que les soldats ukrainiens ne reçoivent jamais

✇Courrier international - Actualités France et Monde, vidéos, infographies
Si la plus grande partie du matériel livré à Kiev contribue bien à l’effort de guerre, de nombreuses armes se perdent une fois arrivées en Ukraine. Près de 500 000 armes portatives ont été perdues ou volées depuis février 2022, ont même reconnu les autorités ukrainiennes. La faute aux réseaux criminels et à la corruption dans le pays, dénonce l’hebdomadaire italien “Panorama”.

© PHOTO ANDRA LUAS ALVES/ANADOLU/AFP

Un soldat porte un missile antichar portable NLAW, près de Kramatorsk, en Ukraine, le 24 octobre 2024.
  •  
  • ↗️
↗️

Dieu, la patrie et la famille : José Antonio Kast, un ultraconservateur président du Chili

✇Courrier international - Actualités France et Monde, vidéos, infographies
Avec la victoire du candidat de l’extrême droite chilienne, défenseur de la dictature de Pinochet, lors de l’élection présidentielle du 14 décembre, l’Amérique latine poursuit son virage à droite toute, analyse “El País America”.

© PHOTO Juan Gonzalez/REUTERS

Le président élu du Chili, José Antonio Kast, après sa victoire au second tour de l’élection présidentielle, à Santiago, au Chili, le 15 décembre 2025.
  •  
  • ↗️
↗️

Nikon is still adding features to the Z9, four years after launch

✇News: Digital Photography Review (dpreview.com)
When you use DPReview links to buy products, the site may earn a commission.
person photographing a model nikon z9
Image: Nikon

Nikon has announced a new firmware update, 5.30, for the Z9, promising a "significant improvement" to the autofocus system's performance when tracking fast-moving subjects, alongside additional features.

The company is also now letting you use the subject detection with the single point and "dynamic AF" autofocus selection point types, giving you more flexibility in how you select which subject you want to focus on. The Z9 also gains the in-camera focus limiter and additional level of live-view magnification that were added to the Z8 and Z6III earlier this year, and has its "wide" area setting expanded to cover more of the image area.

Firmware 5.30 also improves the Auto Capture feature, with the company saying it's added "a new AF standby position." It also brings support for UVC/UAC, which lets you use it as a webcam for your computer without the need for additional drivers or software (though it seems unlikely that there were that many people demanding this ability for their pro sports camera).

The camera also gains support for Nikon's "Flexible Color Picture Control," which lets you create a custom color mode using its desktop software, then load it onto the camera for it to use while creating JPEGs.

It's nice to see Nikon continuing to add new features to the Z9 over four years after it announced the camera. While some of them may have debuted in lower-end cameras in the company's lineup, that gives the company all the more reason to add them to its highest-end camera if it can, so we're happy to see Nikon taking that opportunity.

THE BEST GETS BETTER: NIKON RELEASES NEW FIRMWARE VERSION 5.30 FOR THE Z 9 FLAGSHIP PROFESSIONAL MIRRORLESS CAMERA

Updates Especially Benefit Pro Sports Shooters; Include Improved AF Performance and Functionality, Auto Capture Enhancements, Flexible Color and More

MELVILLE, NY (DECEMBER 15, 2025) -- Today, Nikon Inc. is pleased to announce the release of firmware version 5.30 for the full-frame/FX-format flagship mirrorless camera, the Nikon Z 9. This free firmware is now available for download and adds improvements across the board to further enhance the capabilities of Nikon’s top-of-the-line mirrorless camera.

The new firmware adds multiple focus enhancements, starting with a significant improvement in subject acquisition, tracking and stability for fast-moving subjects such as athletes. The advanced subject detection, created with Nikon’s deep learning technology, now works in other focus modes, making it easier to track the intended subject reliably in either single point or dynamic AF modes. Subject detection can now quickly be toggled on/off using a custom function button, if desired. The firmware also adds a new in-camera focus limiter, which allows the user to restrict the focus range to specific distances.

Improvements have also been made to the Auto Capture function, with a new AF standby position, and other operability and performance updates like face detection. The Z 9 now gives users the ultimate and most intelligent remote camera setup, without the need for any third-party triggering devices. This offers an extreme advantage for those shooting wildlife or professional sports with limited access.

Firmware version 5.30 adds support for Flexible Color Picture Control, which allows users to easily craft their own unique looks using NX Studio, Nikon's image browsing, processing, and editing desktop software. This new feature offers greater creative freedom by enabling intuitive adjustments to parameters such as color hue, brightness, and contrast using tools like Color Blender and Color Grading. Settings configured in NX Studio can then be saved to a memory card and loaded onto the camera as Custom Picture Controls for shooting. These settings are reflected in the live view display, allowing users to preview results in real time, reducing the need for post-processing.

Additional Improvements to Operability and Functionality

  • Focusing is now possible with the maximum aperture in live view.
  • A magnification option of [400%] has been added to [Zoom on/off] available for Custom Settings.
  • Use of an external microphone (wired/wireless) is now possible when recording voice memos.
  • Extended the dimensions of focus areas available with [Wide-area AF (C1)] and [Wide-area AF (C2)] AF-area modes.
  • Added [Flat Monochrome] and [Deep Tone Monochrome] Picture Controls.
  • Added [USB streaming (UVC/UAC)] to [USB] in the [NETWORK MENU].
  • Changed the specifications for uninterrupted video output to HDMI devices such as external monitors when recording ended.
  • The headphone volume level can now be adjusted in the “i” menu during video recording.

Z 9 owners can visit the Nikon download center to get the new firmware for free. Nikon will continuously meet users’ needs through firmware updates that expand the functionality of its cameras.

  •  
  • ↗️