CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems

Silviu STAHIE | October 13, 2020 | APT, cisa, FBI, Industry News, Netlogon, threat actors, VPN, vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-2020-1472—in Windows ...

HOTforSecurity

Detecting Zerologon (CVE-2020-1472) with Zeek

Yacin Nadji | September 16, 2020 | ciphertext, Corelight Labs, CVE-2020-1472, CVSS10, LateralMovement, Microsoft, Netlogon, Open Source Community, python, Secura, Sigma, Splunk, vulnerability, Windows Server, Zeek, ZeroLogon

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...

Bright Ideas Blog

Netlogon

CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems

Detecting Zerologon (CVE-2020-1472) with Zeek

The Future of Multi-Cloud Security: A Look Ahead at Intelligent Cloud Security Posture Management Solutions

Prevent Catastrophic Data Loss in the Cloud

CISO Roundtable: What We’ve Heard, and What We’re Looking Forward To