Zerologon is the name given to a security vulnerability found in Microsoft Windows domain controllers by Secura. It is an unauthenticated privilege escalation vulnerability in the Netlogon Remote Protocol (MS-NRPC). An attacker can leverage this flaw to gain administrative access to a Windows domain.

This vulnerability was assigned CVE number CVE-2020-1472 and rated critical. A Zerologon vulnerability that was patched by Microsoft in August has been making the news lately as proof of concept exploits have started to appear in the wild. In this post, I will discuss in more detail what this vulnerability is and how you can defend against it.

As organizations across the country have moved to remote work models, many have reported an increase in cyberattacks. Cybercriminals, it seems, are taking advantage of the public health crisis to exploit security vulnerabilities in home-based computer systems. What can organizations do to minimize the chances that their shift to remote work results in an expensive breach? We recommend a multipronged approach that combines the use of security tools and end-user education.

When I heard human factors was going to be the focus of the RSA 2020 conference, I was pretty excited. Finally, we are talking about the one part of the equation that does not change: the user, the employee, the owner, society, the world. To top it off, I actually got the opportunity to present on that very topic at RSA; I was thrilled.

Last year, I consulted with a pastor whose church had suffered a ransomware attack. This particular church had an extensive fundraising operation designed to support a local homeless program, and the ransomware infection impacted all of the data used to solicit donations — and ground those important efforts to a halt.

Like many nonprofits, the church fallen into a common trap: the fallacy of thinking that they don’t have any important data that would attract attackers. But, in this world, every organization is a potentially lucrative target.

Organizations face many challenges when it comes to keeping their operations secure and driving the most value from their next-generation firewalls (NGFWs). How to overcome these challenges is one of the most common discussions I have with customers. They often don’t have the personnel resources to tackle these important but mundane tasks. One fix is…

The seemingly endless headlines about security and data breaches can lead us to believe that attackers have become more advanced than ever before. While perhaps their goals and approach are more organized, analysis of recent breaches suggests that their techniques, in fact, have not significantly evolved. As CDW looks back on the last three years…