netlogon – WindowsTechs.com

Microsoft Patch Tuesday, February 2021 Edition

Posted on February 9, 2021 by BrianKrebs

Microsoft today rolled out updates to plug at least 56 security holes in its Windows operating systems and other software. One of the bugs is already being actively exploited, and six of them were publicized prior to today, potentially giving attackers a head start in figuring out how to exploit the flaws. Continue reading Microsoft Patch Tuesday, February 2021 Edition→

Critical MobileIron RCE Flaw Under Active Attack

Posted on November 25, 2020 by Lindsey O'Donnell

Attackers are targeting the critical remote code-execution flaw to compromise systems in the healthcare, local government, logistics and legal sectors, among others. Continue reading Critical MobileIron RCE Flaw Under Active Attack→

CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems

Posted on October 13, 2020 by Silviu STAHIE

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-20… Continue reading CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems→

Zerologon Patches Roll Out Beyond Microsoft

Posted on September 23, 2020 by Tara Seals

A Samba patch and a micropatch for end-of-life servers have debuted in the face of the critical vulnerability. Continue reading Zerologon Patches Roll Out Beyond Microsoft→

Detecting Zerologon (CVE-2020-1472) with Zeek

Posted on September 16, 2020 by Yacin Nadji

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a privilege escalation vulnerabi… Continue reading Detecting Zerologon (CVE-2020-1472) with Zeek→

Windows Exploit Released For Microsoft ‘Zerologon’ Flaw

Posted on September 15, 2020 by Lindsey O'Donnell

Security researchers and U.S. government authorities alike are urging admins to address Microsoft’s critical privilege escalation flaw. Continue reading Windows Exploit Released For Microsoft ‘Zerologon’ Flaw→

Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft

Posted on August 11, 2020 by Tom Spring

One of the two zero-day bugs is rated ‘critical’ and is classified as a remote code-execution bug impacting Microsoft’s Internet Explorer. Continue reading Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft→

Correct startup state for Netlogon on domain controllers

Posted on November 18, 2016 by Windows IT Pro

Understand the default startup state for Netlogon and why it might be wrong.