Authentication, Backup, LAN and Systems Review

CVE-2020-1472: 'Zerologon' Vulnerability in Netlogon Could Allow Attackers to Hijack Windows Domain Controller

Tenable

SEPTEMBER 14, 2020

Security researchers reveal how the cryptographic authentication scheme in Netlogon can be exploited to take control of a Windows domain controller (DC). CVE-2020-1472 is a privilege escalation vulnerability due to the insecure usage of AES-CFB8 encryption for Netlogon sessions. Identifying affected systems. Background.

Windows

Windows LAN Backup Authentication

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

Tenable

JANUARY 10, 2023

Windows Authentication Methods. Windows Backup Engine. CVE-2023-21674 is an EoP vulnerability in Windows operating systems that received a CVSSv3 score of 8.8 ALPC is a message passing utility in Windows operating systems. CVE-2023-21730 is an EoP in Windows operating systems that received a CVSSv3 score of 7.8.

Windows

Windows Software Review Operating System LAN

A Brief Overview of What is SaaS – Its Advantages and Disadvantages

Openxcell

JANUARY 17, 2023

Shopify is a well-known provider of applications and platforms and is used by many e-commerce businesses and retail Point of Sale systems (POS). Due to the decentralized storage of all data on a cloud server, local hardware and software issues are less likely to result in data loss for all users, thanks to the cloud architecture.

Weak Development Team

Weak Development Team Software Review LAN Internet

CTO Universe

CVE-2020-1472: 'Zerologon' Vulnerability in Netlogon Could Allow Attackers to Hijack Windows Domain Controller

Microsoft’s January 2023 Patch Tuesday Addresses 98 CVEs (CVE-2023-21674)

A Brief Overview of What is SaaS – Its Advantages and Disadvantages

Webinars

Stay Connected