Read the original article: Microsoft’s Zerologon vulnerability fix: What admins need to know
Microsoft recently released a patch (CVE-2020-1472) to fix a software issue in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC). As noted on a Secura blog, an unauthenticated attacker with network access to a domain controller could exploit this vulnerability, dubbed Zerologon, to compromise all Active Directory (AD) identity services. An attacker does not need credentials to gain privileges on the network, only access to the domain. Install this update on your domain controllers as soon as possible if you have not done so already.
To read this article in full, please click here
(Insider Story)
Read the original article: Microsoft’s Zerologon vulnerability fix: What admins need to know