CVE-2020-1472 Archives - AZGAD WEBSITE SECURITY BLOG

Wednesday, April 24, 2024

Latest:

2020-11-25 Lindsey O'Donnell

Critical MobileIron RCE Flaw Under Active Attack

Attackers are targeting the critical remote code-execution flaw to compromise systems in the healthcare, local government, logistics and legal sectors, among others.

Active Directory attack analysis bazar loader Cobalt Strike CVE-2020-1472 dfir report five hours initial phishing email Malware privilege escalation ryuk Vulnerabilities Web Security zerologon

2020-10-19 Tara Seals

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Researchers said the group was able to move from initial phish to full domain-wide encryption in just five hours.

Active Directory attack analysis bazar loader Cobalt Strike CVE-2020-1472 dfir report initial phishing email Malware privilege escalation ryuk Vulnerabilities Web Security zerologon

2020-10-19 Tara Seals

Ryuk Ransomware Gang Uses Zerologon Bug for Lightning-Fast Attack

Researchers said the group was able to move from initial phish to full domain-wide encryption in just five hours.

alert APTs chaining CISA Citrix NetScaler Critical Infrastructure CVE-2018-13379 CVE-2019-11510 CVE-2019-19781 CVE-2020-1472 CVE-2020-15505 CVE-2020-2021 CVE-2020-5902 election security election systems exploit chain F5 BIG-IP FBI government attacks Microsoft mobileiron Palo Alto Networks pulse secure VPN Vulnerabilities warning Web Security zerologon

2020-10-13 Lindsey O'Donnell

Election Systems Under Attack via Microsoft Zerologon Exploits

Cybercriminals are chaining Microsoft’s Zerologon flaw with other exploits in order to infiltrate government systems, putting election systems at risk, a new CISA and FBI advisory warns.

active exploit CVE-2020-1472 Exploit Hacks iranian apt MERCURY Microsoft muddywater nation state actor Netlogon Remote Protocol Seedworm static kitten Vulnerabilities Web Security Windows zerologon flaw

2020-10-06 Lindsey O'Donnell

Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors

Microsoft warns that the MERCURY APT has been actively exploiting CVE-2020-1472 in campaigns for the past two weeks.

active attacks active exploitation Attacks Cisco Talos CVE-2020-1472 domain controllers Hacks in the wild Microsoft privilege elevation snowballing two-phase patch Vulnerabilities Web Security zerologon

2020-09-29 Tara Seals

Zerologon Attacks Against Microsoft DCs Snowball in a Week

The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged.

Active Directory christopher krebs CISA ComputeNetlogonCredential Critical Infrastructure CVE-2020-1472 Cybersecurity and Infrastructure Security Agency github Government Microsoft Windows Netlogon Remote Protocol MS-NRPC patch Tuesday Vulnerabilities Web Security Windows Server OS zerologon

2020-09-21 Tom Spring

DHS Issues Dire Patch Warning for ‘Zerologon’

The deadline looms for U.S. Cybersecurity and Infrastructure Security Agency’s emergency directive for federal agencies to patch against the so-called ‘Zerologon’ vulnerability.

Active Directory active domain attack Authentication critical flaw CVE-2020-1472 domain controllers Exploit Microsoft microsoft August patch tuesday microsoft flaw Netlogon patch patch Tuesday poc privilege escalation Proof of Concept remote protocol Vulnerabilities windows flaw zerologon

2020-09-15 Lindsey O'Donnell

Windows Exploit Released For Microsoft ‘Zerologon’ Flaw

Security researchers and U.S. government authorities alike are urging admins to address Microsoft’s critical privilege escalation flaw.

.net framework 0-Day Vulnerability august patch tuesday CVE-2020-1380 CVE-2020-1464 CVE-2020-1472 Internet Explorer Microsoft Patch Tuesday Netlogon Remote Procedure Call Vulnerabilities Web Security Windows Windows server Zero-Day Bug

2020-08-12 Tom Spring

Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft

One of the two zero-day bugs is rated ‘critical’ and is classified as a remote code-execution bug impacting Microsoft’s Internet Explorer.

2020-08-12 Tom Spring

Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft

One of the two zero-day bugs is rated ‘critical’ and is classified as a remote code-execution bug impacting Microsoft’s Internet Explorer.

By continuing to use the site, you agree to the use of cookies. more information