If you haven’t patched your servers recently today is the day to clear your schedule and get that done. In last month’s release for Patch Tuesday was one fix that snuck in mostly under the radar. Now enhanced with more details, CVE-2020-1472 is a true 10 out of 10 severity rating. The fix closes a flaw now referred to as ‘Zerologon’, where an attacker can take advantage of a weak cryptographic algorithm in the Netlogon authentication process. When exploited, the attacker will gain full control over a corporate network in seconds. Ransomware and other malicious attacks become simplistic with this capability.
The initial patch simply makes the Netlogon security features mandatory, neutering the potential exploitation. Early next year Microsoft expects to have a true fix in place.
ZDNet has more information on this here.
