{"id":4960,"date":"2020-09-21T08:56:49","date_gmt":"2020-09-21T12:56:49","guid":{"rendered":"https:\/\/nexela.wpenginepowered.com\/?p=4960"},"modified":"2023-03-20T15:29:09","modified_gmt":"2023-03-20T19:29:09","slug":"alert-update-windows-netlogon-remote-protocol-now-says-homeland-security","status":"publish","type":"post","link":"https:\/\/nexela.com\/?p=4960","title":{"rendered":"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security"},"content":{"rendered":"

The Cybersecurity and Infrastructure Security Agency (CISA) has released an emergency directive concerning a critical exploit known as <\/span>Zerologon<\/span><\/b>, that affects servers running Windows Server operating systems that needs to get patched as soon as possible.<\/span><\/p>\n

<\/p>\n

What\u2019s the Exploit and Who Does It Affect?<\/span><\/h2>\n

The vulnerability in the <\/span>CISA\u2019s emergency directive<\/span><\/a> affects all supported Windows Server operating systems. It\u2019s been named <\/span>Zerologon<\/span><\/b>, and If left unpatched, it could allow an unauthenticated threat actor to gain access to a domain controller and completely compromise your network\u2019s Active Directory services. The vulnerability gets its name because all the hacker has to do is send a series of Netlogon messages with the input fields filled with zeroes to gain access. <\/span><\/p>\n

Once in, this essentially gives the hacker a lot of control over your network, and it\u2019s a publicly available exploit (since Microsoft has released a patch for it) which means cybercriminals will be taking advantage of it. The attacker doesn\u2019t need any user credentials to use this exploit.<\/span><\/p>\n

If your business network is running Windows Server, you need to have updates applied to your servers to ensure that this vulnerability is patched. If you aren\u2019t actively keeping all the devices on your network maintained with the latest updates and security patches, you are essentially leaving the front door wide open.<\/span><\/p>\n

The Department of Homeland Security (the parent department of the CISA), has issued a directive for all government agencies in the United States that they have until <\/span>today (September  21st) <\/span><\/b>to apply the patch, to prevent giving hackers control over federal networks. This means <\/span>all state and local government agencies are required to apply this today and<\/span><\/b> report back to the CISA<\/span><\/b><\/a>.<\/span><\/b> Not having this patch installed will also affect other compliance standards throughout other industries, and of course, leave your business and your data at high-risk of a breach. It is highly recommended to apply this patch today, as soon as possible, regardless of the industry you are in. We can\u2019t stress this enough. <\/span>Apply this patch as soon as humanly possible.<\/span><\/b><\/p>\n

The Good News<\/span><\/h2>\n

If you have an active managed IT services agreement with Nexela that covers the maintenance of your Windows Servers, you have likely already received the patch, or will be having it installed today. The patch was released by Microsoft as part of their August 2020 Patch Tuesday Update.<\/span><\/p>\n

If you don\u2019t have an agreement with us, or you aren\u2019t sure if your agreement covers fixing the Zerologon vulnerability, we urge you to reach out to us by calling (215) 525-3223. This is definitely not something you want to risk.<\/span><\/p>\n

The Department of Homeland Security and the US Cybersecurity and Infrastructure Security Agency don\u2019t issue emergency directives casually. This needs to be taken seriously for all businesses and organizations.<\/span><\/p>\n

If you need help, or you are unsure about how to protect your organization from the Zerologon vulnerability, don\u2019t hesitate to reach out to Nexela at (215) 525-3223.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

The Cybersecurity and Infrastructure Security Agency (CISA) has released an emergency directive concerning a critical exploit known as Zerologon, that affects servers running Windows Server operating systems that needs to get patched as soon as possible.<\/p>\n","protected":false},"author":4,"featured_media":4961,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[115],"tags":[71,140,67],"class_list":["post-4960","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-alerts","tag-compliance","tag-network-security","tag-security"],"yoast_head":"\nAlert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela<\/title>\n<meta name=\"description\" content=\"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/nexela.com\/?p=4960\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela\" \/>\n<meta property=\"og:description\" content=\"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nexela.com\/?p=4960\" \/>\n<meta property=\"og:site_name\" content=\"| Philadelphia, PA | Nexela\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/PhiladelphiaITsupport\" \/>\n<meta property=\"article:published_time\" content=\"2020-09-21T12:56:49+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-03-20T19:29:09+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/nexela.com\/wp-content\/uploads\/Alert_Blog_400.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Eric Disengof\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@NexelaInc\" \/>\n<meta name=\"twitter:site\" content=\"@NexelaInc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Eric Disengof\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/nexela.com\/?p=4960\",\"url\":\"https:\/\/nexela.com\/?p=4960\",\"name\":\"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela\",\"isPartOf\":{\"@id\":\"https:\/\/nexela.com\/#website\"},\"datePublished\":\"2020-09-21T12:56:49+00:00\",\"dateModified\":\"2023-03-20T19:29:09+00:00\",\"author\":{\"@id\":\"https:\/\/nexela.com\/#\/schema\/person\/5435031473121f8542dd2002ae241a9d\"},\"description\":\"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/nexela.com\/?p=4960\"]}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/nexela.com\/#website\",\"url\":\"https:\/\/nexela.com\/\",\"name\":\"| Philadelphia, PA | Nexela\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/nexela.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/nexela.com\/#\/schema\/person\/5435031473121f8542dd2002ae241a9d\",\"name\":\"Eric Disengof\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/nexela.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/85f06e5e0c52138765f1a62466ec5a0779caee9daf1f1a3e2eca775fef7006e2?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/85f06e5e0c52138765f1a62466ec5a0779caee9daf1f1a3e2eca775fef7006e2?s=96&d=mm&r=g\",\"caption\":\"Eric Disengof\"},\"url\":\"https:\/\/nexela.com\/?author=4\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela","description":"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/nexela.com\/?p=4960","og_locale":"en_US","og_type":"article","og_title":"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela","og_description":"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.","og_url":"https:\/\/nexela.com\/?p=4960","og_site_name":"| Philadelphia, PA | Nexela","article_publisher":"https:\/\/www.facebook.com\/PhiladelphiaITsupport","article_published_time":"2020-09-21T12:56:49+00:00","article_modified_time":"2023-03-20T19:29:09+00:00","og_image":[{"width":400,"height":400,"url":"https:\/\/nexela.com\/wp-content\/uploads\/Alert_Blog_400.jpg","type":"image\/jpeg"}],"author":"Eric Disengof","twitter_card":"summary_large_image","twitter_creator":"@NexelaInc","twitter_site":"@NexelaInc","twitter_misc":{"Written by":"Eric Disengof","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/nexela.com\/?p=4960","url":"https:\/\/nexela.com\/?p=4960","name":"Alert: Update Windows Netlogon Remote Protocol Now, says Homeland Security | Philadelphia, PA | Nexela","isPartOf":{"@id":"https:\/\/nexela.com\/#website"},"datePublished":"2020-09-21T12:56:49+00:00","dateModified":"2023-03-20T19:29:09+00:00","author":{"@id":"https:\/\/nexela.com\/#\/schema\/person\/5435031473121f8542dd2002ae241a9d"},"description":"The DHA and CISA are urging businesses to fix a major security vulnerability called Zerologin across all Windows Servers that needs to be addressed immediately.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nexela.com\/?p=4960"]}]},{"@type":"WebSite","@id":"https:\/\/nexela.com\/#website","url":"https:\/\/nexela.com\/","name":"| Philadelphia, PA | Nexela","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nexela.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/nexela.com\/#\/schema\/person\/5435031473121f8542dd2002ae241a9d","name":"Eric Disengof","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/nexela.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/85f06e5e0c52138765f1a62466ec5a0779caee9daf1f1a3e2eca775fef7006e2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/85f06e5e0c52138765f1a62466ec5a0779caee9daf1f1a3e2eca775fef7006e2?s=96&d=mm&r=g","caption":"Eric Disengof"},"url":"https:\/\/nexela.com\/?author=4"}]}},"_links":{"self":[{"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/posts\/4960","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/nexela.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4960"}],"version-history":[{"count":0,"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/posts\/4960\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nexela.com\/index.php?rest_route=\/wp\/v2\/media\/4961"}],"wp:attachment":[{"href":"https:\/\/nexela.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4960"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nexela.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4960"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nexela.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4960"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}