CVE-2020-1472

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

| | CVE-2020-1472, Microsoft, Other, Scott Caveza, Tenable, Windows Server, ZeroLogon
Microsoft warned on Wednesday that malicious hackers are exploiting a particularly dangerous flaw in Windows Server systems that could be used to give attackers the keys to the kingdom inside a vulnerable ...
Krebs on Security
zerologon

Feds Yell PATCH NOW over Windows AD ‘Zerologon’ Vuln

| | Active Directory, cisa, CVE-2020-1472, SB Blogwatch, Windows Server, ZeroLogon
CISA sent an unusual warning late last week. The source of their fears? The Zerologon vulnerability, disclosed last week ...
Security Boulevard

Detecting Zerologon (CVE-2020-1472) with Zeek

| | ciphertext, Corelight Labs, CVE-2020-1472, CVSS10, LateralMovement, Microsoft, Netlogon, Open Source Community, python, Secura, Sigma, Splunk, vulnerability, Windows Server, Zeek, ZeroLogon
By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...
Bright Ideas Blog
Microsoft Patch Tuesday, August 2020 Edition

Microsoft Patch Tuesday, August 2020 Edition

| | Adobe Acrobat, Adobe Reader, black hat, CVE-2020-1048, CVE-2020-1337, CVE-2020-1380, CVE-2020-1464, CVE-2020-1472, Dustin Childs, Internet Explorer zero-day, Latest Warnings, Microsoft Patch Tuesday August 2020, Other, Satnam Narang, Tenable, Time to Patch, Trend Micro Zero Day Initiative
Microsoft today released updates to plug at least 120 security holes in its Windows operating systems and supported software, including two newly discovered vulnerabilities that are actively being exploited. Yes, good people ...
Krebs on Security