CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability (Zerologon)

 
Patchworx provides patching support for companies in need of immediate assistance in protecting their networks from the risk of CVE-2020-1472: Netlogon Elevation of Privilege Vulnerability (Zerologon). The CVE-2020-1472 vulnerability can be exploited and allow threat actors to gain an escalation in privilege. It is strongly advised for IT professionals to patch for CVE-2020-1472 to protect crucial network infrastructure from being breached.  

Threat actors gain an elevation of privilege via Netlogon Remote Protocol (MS-NRPC). By taking advantage of this vulnerability (MS-NRPC), an unauthenticated cybercriminal is able to establish a connection with a domain controller and acquire domain administrator credentials. Once acquired, threat actors are able to run a specialized application that causes your networks to be exposed to additional threats 

Adhering to Microsoft's best security practices, Patchworx will:

  1. UPDATE your Domain Controllers and ensure they remain up-to-date with patches released August 11, 2020 or later.
  2. IDENTIFY the devices that are creating vulnerable connections through event log monitoring.
  3. ADDRESS the non-compliant devices that are creating vulnerable connections.
  4. ENABLE enforcement mode to address CVE-2020-1472 in your network’s environment.

Deploying updates released on and after August 11, 2020 will resolve security concerns in CVE-2020-1472 for Windows devices, and Active Directory domains and trusts. The 4-step process outlined above will need to be completed for third-party devices to thoroughly mitigate security issues 

Patchworx is staffed 24x7x365 by all US-based engineers that are ready to help you secure your systems. With the increased activity from cybercriminals targeting critical infrastructure, the threat appears more imminent than ever. Companies need to be proactive at addressing known vulnerabilities as soon as they become aware of them.

 

Contact us at (844) 957-2824 or info@patchworx.com for immediate action on applying these critical updates for CVE-2020-1472 Netlogon Vulnerability!

 

Microsoft WSUS Consultant

WSUS Consulting Services

Software update service for system administrators to manage Microsoft product updates
  • Help resolving common WSUS server issues
  • Solve the problem of PCs not reporting to WSUS
  • Identify and repair the common WSUS system errors
  • Fix high CPU utilization problems
  • Stop duplicate SUSClientIDs
  • Diagnose and fix failed downloads
  • Fix IIS permissions that lead to failed Windows Update Agent Error Codes
  • Using Group Policy to set WSUS agent policies
  • Troubleshooting issues with WSUS client agents

SCCM Consulting Services

Systems management software for managing large numbers of computers running multiple operating systems and application.
  • Help with the frequent updates required to maintain security and version updates
  • Develop a program to get a monthly cadence for distributing updates
  • Understanding the of conflicting reports coming from SCCM
  • Verify accuracy before starting the deployment
  • How to properly initiate Client Notification Actions
  • Troubleshooting (DRS) Database Replication Service within SCCM
  • Proactively fixing client issues
  • Fixing failed deployments so you can move on to other more important tasks
  • Fixing ConfigMgr problems
  • Integrate third party add-ins(like Ivanti) for third party updates
  • Support Wake on Lan(WOL) patching
  • Maintenance Windows feature to prevent Servers restart during business hours
  • Updates Windows 10 image during build process that way your workstation will always have the latest security updates
  • Integrate with PowerBi for better reporting

We utilize a proven 31-step patching process.

*Diagram represents a portion of our process

Patch Management As A Service

FREE Webinar Every Thursday
from 10:00 - 11:00 AM. PST

RSVP Early - Limited Seats

REGISTER NOW!

$250K Cyber Insurance Coverage

Our integrated insurance coverage and breach response services includes $250,000 of cyber liability insurance (annual aggregate) with $0 deductible.

As a Patchworx℠ client, you will be protected for the cost of an actual or suspected violation of a privacy regulation due to a security breach that results in the unauthorized release of protected personal information (PPI) up to the policy limits.

PPI is defined as any private, non-public information of any kind in the merchant’s care, custody or control. This coverage territory is worldwide and is backed by a carrier rated A+ by AM Best.

Patch Management As A Service
CALL (844) 95 PATCH

ACHIEVE PATCH COMPLIANCE ASSURANCE