CATEGORIES

Items tagged with zerologon

image
by Paul Lilly - Fri, Sep 25, 2020
Vicious Zerologon Windows Security Flaw Is Now Actively Exploited By Hackers
There is a very good reason why the Department of Homeland Security recently issued an emergency directive to federal agencies to patch their Windows Servers against Zerologon. Just five days after the directive, Microsoft confirmed on Twitter that Zerologon is actively being exploited by hackers. "Microsoft is actively tracking threat actor activity using exploits for the CVE-2020-1472 Netlogon EoP vulnerability, dubbed Zerologon. We have observed attacks where public exploits have been incorporated into attacker playbooks," Microsoft warned. Zerologon is serious threat affecting Windows Server systems that is rated a 10 out of 10 on the Common Vulnerability Scoring System (CVSS). Left unpatched,... Read more...
News
Comments
image
by Nathan Ord - Sun, Sep 20, 2020
Homeland Security Issues Urgent Windows Security Warning Over Zerologon Exploit
Earlier in the week, we reported on a dangerous exploit with Windows domain controllers called Zerologon. Now, the Cybersecurity and Infrastructure Security Agency (CISA), under the Department of Homeland Security direction, is issuing warnings about the exploit and is pushing government agencies to patch the vulnerability over the weekend. The Zerologon exploit is a way for a nefarious person to escalate privileges within a system and gain access to other systems and files. It takes advantage of the Windows Server Netlogon Remote protocol and authentication to capture session data to escalate the exploit further. Earlier in August, Microsoft released a patch to mitigate the vulnerability for... Read more...
News
Comments
image
by Nathan Ord - Tue, Sep 15, 2020
Dangerous Zerologon Domain Controller Exploit Discovered In Windows Active Directory
Secura digital security advisors and researchers, have discovered a highly critical vulnerability with Active Directory domain controllers. Rated as a 10 of 10 on the Common Vulnerability Scoring System (CVSS), this exploit, dubbed Zerologon, allows nefarious people to take over the domain controller and execute privilege escalations. The Zerologon exploit takes advantage of how the Netlogon Remote Protocol works. Typically, this protocol is used for machine and user authentication, as well as updating passwords within a domain. To utilize this exploit, one only needs to set up a TCP connection to the domain controller (DC) and you can spoof a client to go from there. This client spoofing works... Read more...
News
Comments
Your Next Graphics Card
GF RTX 3080
GF RTX 3070
GF RTX 3090
Radeon RX 6000
Big Navi Other
More Results
SITE

Home

Reviews

News

Blogs

Full Site

Sitemap

CATEGORIES

PC Components

Systems

Mobile

IT/Enterprise

Leisure

Videos

COMPANY

About

Advertise

News Tips

Contact

HotTech Vision And Analysis

MORE

Forums

Shop

STAY CONNECTED

Twitter

Facebook

YouTube

RSS

This site is intended for informational and entertainment purposes only. The contents are the views and opinion of the author and/or his
associates. All products and trademarks are the property of their respective owners. Reproduction in whole or in part, in any form or medium, without express written permission of HotHardware.com, LLC. is prohibited. All content and graphical elements are
Copyright © 1999 - 2020 David Altavilla and Hot Hardware, Inc. All rights reserved. Privacy and Terms