LIVE Webinar on Zerologon Vulnerability: Technical Analysis and Detection

2020-09-29 10:26

In other words, the underlying vulnerability could be exploited by an attacker to compromise Active Directory services, and eventually, the Windows domain without requiring any authentication.

What's worse is that a proof-of-concept exploit for this flaw was released to the public last week, and immediately after, attackers started exploiting the weakness against unpatched systems in the wild.

As described in our coverage based on a technical analysis published by Cynet security researchers, the underlying issue is Microsoft's implementation of AES-CFB8, where it failed to use unique, random salts for these Netlogon messages.

For THN readers willing to learn more about this threat in detail, including technical information, mitigations, and detection techniques, they should join a live webinar with Aviad Hasnis, CTO at Cynet.

The Cynet team has also released a free detection tool that alerts you to any Zerologon exploitation in your environment.

News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/o-JJ0KMLmP4/zerologon-cybersecurity.html

#vulnerability #webinar