Microsoft: Threat Actors Exploiting Unpatched Windows Zerologon Flaw
Health IT Security
The Department of Homeland Security Cybersecurity and Infrastructure Security Agency is urging organizations to review a Microsoft alert, as threat actors, including nation-state hackers, continue to exploit a Windows Netlogon vulnerability, dubbed by security researchers as Zerologon.
Both Microsoft and CISA have repeatedly warned of ongoing attacks against this critical flaw, which can enable attackers to spoof a domain controller account to steal domain credentials and take over the domain.
CISA has already observed...