Netlogon

Microsoft Patch Tuesday, February 2021 Edition

Microsoft Patch Tuesday, February 2021 Edition

| | CVE-2020-1472, CVE-2021-1732, CVE-2021-21148, CVE-2021-24078, Immersive Labs, Kevin Breen, Microsoft Patch Tuesday February 2021, Netlogon, Recorded Future, Security Tools, Time to Patch, ZeroLogon
Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of ...
Krebs on Security
CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems

CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems

| | APT, cisa, FBI, Industry News, Netlogon, threat actors, VPN, vulnerability
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-2020-1472—in Windows ...
HOTforSecurity

Detecting Zerologon (CVE-2020-1472) with Zeek

| | ciphertext, Corelight Labs, CVE-2020-1472, CVSS10, LateralMovement, Microsoft, Netlogon, Open Source Community, python, Secura, Sigma, Splunk, vulnerability, Windows Server, Zeek, ZeroLogon
By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...
Bright Ideas Blog