
EP 82: Kerberos in OT: RC4 Downgrade Attacks
From Error Code by Robert Vamosi
March 4, 2026 · 27 min · Episode 83
About this episode
Dor Segal discusses the risks associated with Kerberos in operational technology environments, including various attack vectors and the importance of identity security.
Kerberos, a decades-old authentication protocol, creates hidden risks in OT environments. Dor Segal, security researcher team lead at Silverfort, discusses delegation abuse, cipher downgrade attacks, and person-in-the-middle threats—highlighting why legacy encryption, patching challenges, and operational constraints make identity security critical in industrial networks.
People in this episode
Host: Robert Vamosi
Guest: Dor Segal
Topics covered
- Kerberos
- OT environments
- authentication protocol
- cybersecurity
- identity security
- encryption
- industrial networks
Keywords
- Kerberos
- OT environments
- RC4 Downgrade Attacks
- encryption
- identity security
- cybersecurity
- delegation abuse
- cipher downgrade attacks
- person-in-the-middle threats
Mentioned in this episode
Organizations: Silverfort
Products: Kerberos
More episodes of Error Code
- EP 88: Securing the Infrastructure AI Just Made Vulnerable · June 9, 2026 · 34 min
- EP 87: Backup, Control Gaps, and the Real Cost of Agentic AI Actions · May 27, 2026 · 30 min
- EP 86: The Trusted Channel: AT Command Exploits and Cellular IoT Security · May 12, 2026 · 32 min
- EP 85: From Colonial Pipeline to Agentic AI: What OT Security Actually Requires · April 28, 2026 · 37 min
- EP 84: Airports as Critical Infrastructure: OT Security and Operational Disruption · April 15, 2026 · 37 min
- EP 83: Cybersecurity and Risk in a Decentralized Energy Grid · March 31, 2026 · 25 min
Explore listener stats, chart rankings, contacts and more on the Error Code podcast page.