Zerologon – hacking Windows servers with a bunch of zeros

September 22, 2020
Allan Colombo
Access Control, Business, Central Monitoring Station, Government, IoT Monitoring, Security Integration

Zerologon – hacking Windows servers with a bunch of zeros | #Verdafero #Microsoft #Zerologon #Hacker | (Paul Ducklin) The big, bad bug of the week is called Zerologon.

As you can probably tell from the name, it involves Windows – everyone else talks about logging in, but on Windows you’ve always very definitely logged on – and it is an authentication bypass, because it lets you get away with using a zero-length password.

You’ll also see it referred to as CVE-2020-1472, and the good news is that it was patched in Microsoft’s August 2020 update.

Would you like to read more?

Share This

Related Posts