Secura – WindowsTechs.com

Preventing cybersecurity’s perfect storm

Posted on October 21, 2020 by Help Net Security

Zerologon might have been cybersecurity’s perfect storm: that moment when multiple conditions collide to create a devastating disaster. Thanks to Secura and Microsoft’s rapid response, it wasn’t. Zerologon scored a perfect 10 CVSS sco… Continue reading Preventing cybersecurity’s perfect storm→

Detecting Zerologon (CVE-2020-1472) with Zeek

Posted on September 16, 2020 by Yacin Nadji

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a privilege escalation vulnerabi… Continue reading Detecting Zerologon (CVE-2020-1472) with Zeek→

Are your domain controllers safe from Zerologon attacks?

Posted on September 15, 2020 by Zeljka Zorz

CVE-2020-1472, a privilege elevation vulnerability in the Netlogon Remote Protocol (MS-NRPC) for which Microsoft released a patch in August, has just become a huge liability for organizations that are struggling with timely patching. Secura researchers… Continue reading Are your domain controllers safe from Zerologon attacks?→

How do I select a security awareness solution for my business?

Posted on June 18, 2020 by Mirko Zorz

“Great security awareness training, that is part of a healthy cyber security culture and that is aimed at encouraging positive security behaviours, is essential. The problem is that awareness-raising training has a history of being dry, dull, tec… Continue reading How do I select a security awareness solution for my business?→