Crowdstrike BLOG
  • Featured
    • Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      Mar 31, 2026
    • How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      Mar 25, 2026
    • Falcon Data Security Secures Data Wherever It Lives and Moves
      Falcon Data Security Secures Data Wherever It Lives and Moves
      Mar 24, 2026
    • CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      Mar 24, 2026
  • Recent
    • Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      Mar 31, 2026
    • How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      Mar 25, 2026
    • Falcon Data Security Secures Data Wherever It Lives and Moves
      Falcon Data Security Secures Data Wherever It Lives and Moves
      Mar 24, 2026
    • CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      Mar 24, 2026
  • Video
    • Video Highlights the 4 Key Steps to Successful Incident Response
      Video Highlights the 4 Key Steps to Successful Incident Response
      Dec 02, 2019
    • Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VIDEO]
      Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VIDEO]
      Feb 21, 2019
    • Analyzing Targeted Intrusions Through the ATT&CK Framework Lens [VIDEO]
      Analyzing Targeted Intrusions Through the ATT&CK Framework Lens [VIDEO]
      Jan 22, 2019
    • Qatar’s Commercial Bank Chooses CrowdStrike Falcon®: A Partnership Based on Trust [VIDEO]
      Qatar’s Commercial Bank Chooses CrowdStrike Falcon®: A Partnership Based on Trust [VIDEO]
      Aug 20, 2018
  • Category
    • Agentic SOC
      Agentic SOC
      How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem
      03/25/26
      CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      CrowdStrike Services and Agentic MDR Put the Agentic SOC in Reach
      03/24/26
      4 Ways Businesses Use CrowdStrike Charlotte AI to Transform Security Operations
      4 Ways Businesses Use CrowdStrike Charlotte AI to Transform Security Operations
      03/12/26
      Inside the Human-AI Feedback Loop Powering CrowdStrike’s Agentic Security
      Inside the Human-AI Feedback Loop Powering CrowdStrike’s Agentic Security
      02/10/26
    • Cloud & Application Security
      Cloud & Application Security
      CrowdStrike Advances CNAPP with Industry-First Adversary-Informed Risk Prioritization
      CrowdStrike Advances CNAPP with Industry-First Adversary-Informed Risk Prioritization
      03/24/26
      CrowdStrike Named a Customers’ Choice in 2026 Gartner Peer Insights™ Voice of the Customer for Application Security Posture Management Tools
      CrowdStrike Named a Customers’ Choice in 2026 Gartner Peer Insights™ Voice of the Customer for Application Security Posture Management Tools
      02/03/26
      CrowdStrike Unveils Real-Time Cloud Detection and Response Innovations
      CrowdStrike Unveils Real-Time Cloud Detection and Response Innovations
      12/01/25
      New User Experience Transforms Interaction with the Falcon Platform
      New User Experience Transforms Interaction with the Falcon Platform
      10/21/25
    • Threat Hunting & Intel
      Threat Hunting & Intel
      Tycoon2FA Phishing-as-a-Service Platform Persists Following Takedown
      Tycoon2FA Phishing-as-a-Service Platform Persists Following Takedown
      03/20/26
      CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI
      CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI
      02/24/26
      The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection
      The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection
      02/23/26
      LABYRINTH CHOLLIMA Evolves into Three Adversaries
      LABYRINTH CHOLLIMA Evolves into Three Adversaries
      01/29/26
    • Endpoint Security & XDR
      Endpoint Security & XDR
      Enhanced Network Visibility: A Dive into the Falcon macOS Sensor's New Capabilities
      Enhanced Network Visibility: A Dive into the Falcon macOS Sensor's New Capabilities
      03/11/26
      Falcon for XIoT Extends Asset Protection to Healthcare Environments
      Falcon for XIoT Extends Asset Protection to Healthcare Environments
      03/09/26
      Advanced Web Shell Detection and Prevention: A Deep Dive into CrowdStrike's Linux Sensor Capabilities
      Advanced Web Shell Detection and Prevention: A Deep Dive into CrowdStrike's Linux Sensor Capabilities
      02/05/26
      CrowdStrike Falcon Scores Perfect 100% in SE Labs’ Most Challenging Ransomware Test
      CrowdStrike Falcon Scores Perfect 100% in SE Labs’ Most Challenging Ransomware Test
      02/03/26
    • Engineering & Tech
      Engineering & Tech
      EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware
      EMBER2024: Advancing the Training of Cybersecurity ML Models Against Evasive Malware
      09/03/25
      Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
      Falcon Platform Prevents COOKIE SPIDER’s SHAMOS Delivery on macOS
      08/20/25
      CrowdStrike’s Approach to Better Machine Learning Evaluation Using Strategic Data Splitting
      CrowdStrike’s Approach to Better Machine Learning Evaluation Using Strategic Data Splitting
      08/11/25
      CrowdStrike Researchers Develop Custom XGBoost Objective to Improve ML Model Release Stability
      CrowdStrike Researchers Develop Custom XGBoost Objective to Improve ML Model Release Stability
      03/20/25
    • Executive Viewpoint
      Executive Viewpoint
      The Architecture of Agentic Defense: Inside the Falcon Platform
      The Architecture of Agentic Defense: Inside the Falcon Platform
      01/16/26
      The Dawn of the Agentic SOC: Reimagining Cybersecurity for the AI Era
      The Dawn of the Agentic SOC: Reimagining Cybersecurity for the AI Era
      09/26/25
      CrowdStrike Falcon Platform Evolves to Lead the Agentic Security Era
      CrowdStrike Falcon Platform Evolves to Lead the Agentic Security Era
      09/16/25
      CrowdStrike to Acquire Pangea to Secure Enterprise AI Use and Development
      CrowdStrike to Acquire Pangea to Secure Enterprise AI Use and Development
      09/15/25
    • From The Front Lines
      From The Front Lines
      CrowdStrike Flex for Services Expands Access to Elite Security Expertise
      CrowdStrike Flex for Services Expands Access to Elite Security Expertise
      03/24/26
      From Scanner to Stealer: Inside the trivy-action Supply Chain Compromise
      From Scanner to Stealer: Inside the trivy-action Supply Chain Compromise
      03/20/26
      CrowdStrike Achieves NCSC CIR Assurance for Incident Response
      CrowdStrike Achieves NCSC CIR Assurance for Incident Response
      03/02/26
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Worldwide Incident Response Services
      CrowdStrike Named a Leader in 2025 IDC MarketScape for Worldwide Incident Response Services
      08/27/25
    • Next-Gen Identity Security
      Next-Gen Identity Security
      Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
      03/31/26
      CrowdStrike FalconID Brings Phishing-Resistant MFA to Falcon Next-Gen Identity Security
      CrowdStrike FalconID Brings Phishing-Resistant MFA to Falcon Next-Gen Identity Security
      02/26/26
      CrowdStrike Named a Customers’ Choice in 2026 Gartner® Peer Insights™ Voice of the Customer for User Authentication
      CrowdStrike Named a Customers’ Choice in 2026 Gartner® Peer Insights™ Voice of the Customer for User Authentication
      02/12/26
      CrowdStrike to Acquire Seraphic to Secure Work in Any Browser
      CrowdStrike to Acquire Seraphic to Secure Work in Any Browser
      01/13/26
    • Next-Gen SIEM & Log Management
      Next-Gen SIEM & Log Management
      Falcon Next-Gen SIEM Supports Third-Party EDR Tools, Starting with Microsoft Defender
      Falcon Next-Gen SIEM Supports Third-Party EDR Tools, Starting with Microsoft Defender
      03/23/26
      Falcon Next-Gen SIEM Simplifies Onboarding with Sensor-Native Log Collection
      Falcon Next-Gen SIEM Simplifies Onboarding with Sensor-Native Log Collection
      03/06/26
      Exposing Insider Threats through Data Protection, Identity, and HR Context
      Exposing Insider Threats through Data Protection, Identity, and HR Context
      02/18/26
      How to Scale SOC Automation with Falcon Fusion SOAR
      How to Scale SOC Automation with Falcon Fusion SOAR
      02/11/26
    • Public Sector
      Public Sector
      Falcon Platform for Government Now Offers Falcon for XIoT to Secure Connected Assets
      Falcon Platform for Government Now Offers Falcon for XIoT to Secure Connected Assets
      03/18/26
      CrowdStrike Innovates to Modernize National Security and Protect Critical Systems
      CrowdStrike Innovates to Modernize National Security and Protect Critical Systems
      03/18/26
      CrowdStrike Achieves FedRAMP® High Authorization
      CrowdStrike Achieves FedRAMP® High Authorization
      03/19/25
      NHS Matures Healthcare Cybersecurity with NCSC’s CAF Assurance Model
      NHS Matures Healthcare Cybersecurity with NCSC’s CAF Assurance Model
      03/13/25
    • Exposure Management
      Exposure Management
      March 2026 Patch Tuesday: Eight Critical Vulnerabilities and Two Publicly Disclosed Among 82 CVEs Patched
      March 2026 Patch Tuesday: Eight Critical Vulnerabilities and Two Publicly Disclosed Among 82 CVEs Patched
      03/10/26
      February 2026 Patch Tuesday: Six Zero-Days Among 59 CVEs Patched
      February 2026 Patch Tuesday: Six Zero-Days Among 59 CVEs Patched
      02/10/26
      CrowdStrike Is the Only Vendor to Be Named a Customers’ Choice in 2025 Gartner® Voice of the Customer for External Attack Surface Management
      CrowdStrike Is the Only Vendor to Be Named a Customers’ Choice in 2025 Gartner® Voice of the Customer for External Attack Surface Management
      02/09/26
      January 2026 Patch Tuesday: 114 CVEs Patched Including 3 Zero-Days
      January 2026 Patch Tuesday: 114 CVEs Patched Including 3 Zero-Days
      01/13/26
    • Data Protection
      Data Protection
      Falcon Data Security Secures Data Wherever It Lives and Moves
      Falcon Data Security Secures Data Wherever It Lives and Moves
      03/24/26
      Falcon Data Protection for Cloud Extends DSPM into Runtime
      Falcon Data Protection for Cloud Extends DSPM into Runtime
      11/20/25
      CrowdStrike Stops GenAI Data Leaks with Unified Data Protection
      CrowdStrike Stops GenAI Data Leaks with Unified Data Protection
      09/18/25
      Q&A: How Mastronardi Produce Secures Innovation with CrowdStrike
      Q&A: How Mastronardi Produce Secures Innovation with CrowdStrike
      02/14/25
    • Securing AI
      Securing AI
      New CrowdStrike Innovations Secure AI Agents and Govern Shadow AI Across Endpoints, SaaS, and Cloud
      New CrowdStrike Innovations Secure AI Agents and Govern Shadow AI Across Endpoints, SaaS, and Cloud
      03/23/26
      Secure Homegrown AI Agents with CrowdStrike Falcon AIDR and NVIDIA NeMo Guardrails
      Secure Homegrown AI Agents with CrowdStrike Falcon AIDR and NVIDIA NeMo Guardrails
      03/19/26
      Introducing "AI Unlocked: Decoding Prompt Injection," a New Interactive Challenge
      Introducing "AI Unlocked: Decoding Prompt Injection," a New Interactive Challenge
      02/18/26
      What Security Teams Need to Know About OpenClaw, the AI Super Agent
      What Security Teams Need to Know About OpenClaw, the AI Super Agent
      02/04/26
  • Start Free Trial
  • Featured
  • Recent
  • Video
  • Category
  • Start Free Trial

Yan Linkov

Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse

Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse

March 31, 2026

Yan Linkov Next-Gen Identity Security

CVE-2026-20929, a vulnerability with a CVSS of 7.5 that was patched in the January 2026 Patch Tuesday update, enables attackers to exploit Kerberos authentication relay through DNS CNAME record abuse.[…]

    Categories
    • Agentic SOC
      50
    • Cloud & Application Security
      140
    • Data Protection
      22
    • Endpoint Security & XDR
      351
    • Engineering & Tech
      86
    • Executive Viewpoint
      177
    • Exposure Management
      116
    • From The Front Lines
      202
    • Next-Gen Identity Security
      68
    • Next-Gen SIEM & Log Management
      113
    • Public Sector
      42
    • Securing AI
      27
    • Threat Hunting & Intel
      211
    CONNECT WITH US
    background pattern
    FEATURED ARTICLES
    October 01, 2024
    CrowdStrike Named a Leader in 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms
    September 25, 2024
    Recognizing the Resilience of the CrowdStrike Community
    September 25, 2024
    CrowdStrike Drives Cybersecurity Forward with New Innovations Spanning AI, Cloud, Next-Gen SIEM and Identity Protection
    September 18, 2024
    SUBSCRIBE

    Sign up now to receive the latest notifications and updates from CrowdStrike.

    Created with Sketch.
    See CrowdStrike Falcon® in Action

    Detect, prevent, and respond to attacks— even malware-free intrusions—at any stage, with next-generation endpoint protection.

    See Demo
    logo
    • Copyright © 2026 CrowdStrike
    • Privacy
    • Request Info
    • Blog
    • Contact Us
    • 1.888.512.8906
    • Accessibility