Japanese Orgs Hacked ‘by China’ in Long, Widespread Campaign

Richi Jennings | November 20, 2020 | APT10, china, Japan, SB Blogwatch, ZeroLogon

Chinese state-backed threat actors APT10 have been hacking Japanese businesses for at least a year ...

Security Boulevard

Beware of Zerologon Vulnerabilities in Windows Server

Charlotte Milana | October 26, 2020 | Microsoft, Network Security, vulnerability, ZeroLogon

Researchers have new discovered a new Common Vulnerability & Exposure (CVE) called Zerologon. According to, Microsoft’s Security Update Aug. 11: “The elevation of privilege vulnerability for Zerologon, or CVE-2020-147, exists when an ...

Security Boulevard

Microsoft Domain Controller “ZeroLogon” and RCE Vulnerabilities Test

WebTegrity | October 6, 2020 | Blog, Microsoft Domain Controller Vuln, Microsoft Exchange Server RCE, Vulnerabilities, Vulnerability Research Team, Zero-Day Alerts, ZeroLogon

The post Microsoft Domain Controller “ZeroLogon” and RCE Vulnerabilities Test appeared first on Digital Defense, Inc ...

Digital Defense, Inc.

Zerologon: Tripwire Industrial Visibility Threat Definition Update Released

Robert Landavazo | October 5, 2020 | ICS Security, Latest Security News, Tripwire Industrial Visibility, vulnerability, ZeroLogon

Today, we released a Threat Definition Update bundle for our Tripwire Industrial Visibility solution to aid in the detection of Zerologon. Otherwise known as CVE-2020-1472, Zerologon made news in the summer of ...

The State of Security

Cyber Security Roundup for October 2020

SecurityExpert | October 1, 2020 | adobe, bt, Flightradar, Huawei, Microsoft, NCSC, NIST, Nokia, patching, Ransomware, Ryuk, ZeroLogon

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, September 2020.COVID-19 wasn't the only virus seriously disrupting the start ...

IT Security Expert Blog

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

BrianKrebs | September 24, 2020 | CVE-2020-1472, Microsoft, Other, Scott Caveza, Tenable, Windows Server, ZeroLogon

Microsoft warned on Wednesday that malicious hackers are exploiting a particularly dangerous flaw in Windows Server systems that could be used to give attackers the keys to the kingdom inside a vulnerable ...

Krebs on Security

Feds Yell PATCH NOW over Windows AD ‘Zerologon’ Vuln

Richi Jennings | September 22, 2020 | Active Directory, cisa, CVE-2020-1472, SB Blogwatch, Windows Server, ZeroLogon

CISA sent an unusual warning late last week. The source of their fears? The Zerologon vulnerability, disclosed last week ...

Security Boulevard

Detecting Zerologon (CVE-2020-1472) with Zeek

Yacin Nadji | September 16, 2020 | ciphertext, Corelight Labs, CVE-2020-1472, CVSS10, LateralMovement, Microsoft, Netlogon, Open Source Community, python, Secura, Sigma, Splunk, vulnerability, Windows Server, Zeek, ZeroLogon

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a ...

Bright Ideas Blog