The Security Intelligence team at Microsoft is tracking newly waged exploits in the wild.

Dark Reading Staff, Dark Reading

September 24, 2020

1 Min Read

Microsoft's Security Intelligence team says it's monitoring new attacks that employ public exploits of the recently patched CVE-2020-1472 Netlogon EoP vulnerability, aka Zerologon.

In a series of tweets last night, Microsoft advised organizations to "immediately" patch the flaw. The company said it will keep tracking the threats and update its threat analytics report as it learns more.

"Microsoft is actively tracking threat actor activity using exploits for the CVE-2020-1472 Netlogon EoP vulnerability, dubbed Zerologon. We have observed attacks where public exploits have been incorporated into attacker playbooks," the company posted on its @MsftSecIntel Twitter account.

Read and follow the latest from Microsoft on the attacks here

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights