The rather concerning design flaw in Microsoft’s netlogon protocol is being exploited in the wild by miscreants, the Windows giant’s security team has warned. The mega-biz today confirmed it is seeing active attacks abusing the CVE-2020-1472 vulnerability, aka ZeroLogon, which can be exploited to bypass authentication and gain domain-level administrator access in corporate networks.
Read full article on The Register