A blocking and tackling — Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has delivered a rare emergency directive (via TechCrunch ) urging government agencies to install a patch for a “critical” Windows Server vulnerability known by Secura as Zerologon . The flaw in the Netlogon Remote Protocol lets attackers with network access “completely compromise” Active Directory services on a network without using a sign-in. Agencies have to install the patch no later than September 21st.
Source: Engadget