Varonis announces strategic partnership with Microsoft to accelerate the secure adoption of Copilot.

Learn more
Blog Security Bulletins

Threat Update #12 - Does Zerologon Change the Game?

Cybercriminals are using the Zerologon exploit to fast track lateral movement and privilege escalation. If left unpatched, the exploit lets attackers use the password of the primary domain controller to...
Kilian Englert
1 min read
Last updated January 17, 2023

Contents

    Cybercriminals are using the Zerologon exploit to fast track lateral movement and privilege escalation. If left unpatched, the exploit lets attackers use the password of the primary domain controller to move laterally to the rest of the domain controllers — and spread the ransomware across the network.

    Kilian Englert talks with Ryan O’Boyle from the Incident Response team to discuss Zerologon and how ransomware groups are evolving their toolkits — plus other insight from the October 2020 Malware Trends Report.

    Read more in our October 2020 Malware Trends Report.

    Do you need to shore up your security stack to defend against ransomware infections like Emotet, or concerned you may already be infected?

    👋 Varonis can help. Please click here to contact us.

    What you should do now

    Below are three ways we can help you begin your journey to reducing data risk at your company:

    1. Schedule a demo session with us, where we can show you around, answer your questions, and help you see if Varonis is right for you.
    2. Download our free report and learn the risks associated with SaaS data exposure.
    3. Share this blog post with someone you know who'd enjoy reading it. Share it with them via email, LinkedIn, Reddit, or Facebook.
    Kilian Englert
    Kilian Englert Kilian has a background in enterprise security engineering, as well as security solution selling. Kilian is a Certified Information Systems Security Professional (CISSP) and creates internal and public content on topics related to cybersecurity and technology best practices.

    Try Varonis free.

    Get a detailed data risk report based on your company’s data.
    Deploys in minutes.
    Get started View sample

    Keep reading

    Varonis tackles hundreds of use cases, making it the ultimate platform to stop data breaches and ensure compliance.

    eternalrocks-leaves-backdoor-trojan-for-remote-access-to-infected-machines
    EternalRocks leaves backdoor trojan for remote access to infected machines
    eternalrocks-leaves-backdoor-trojan-for-remote-access-to-infected-machines
    Kieran Laffan
    May 20, 2017
    What we know so far The WannaCry ransomware worm outbreak from last Friday week used just one of the leaked NSA exploit tools, ETERNALBLUE, which exploits vulnerabilities in the SMBv1...
    how-to-use-powershell-for-privilege-escalation-with-local-computer-accounts
    How To Use PowerShell for Privilege Escalation with Local Computer Accounts
    how-to-use-powershell-for-privilege-escalation-with-local-computer-accounts
    Michael Buckbee
    March 29, 2020
    Privilege escalation is when an attacker is able to exploit the current rights of an account to gain additional, unexpected access. While this can be caused by zero-day vulnerabilities, state-level...
    🚨-massive-ransomware-outbreak:-what-you-need-to-know
    🚨 Massive Ransomware Outbreak: What You Need To Know
    🚨-massive-ransomware-outbreak:-what-you-need-to-know
    Michael Buckbee
    May 12, 2017
    Remember those NSA exploits that got leaked a few months back? A new variant of ransomware using those exploits is spreading quickly across the world – affecting everyone from the...
    7-wi-fi-security-tips:-avoid-being-easy-prey-for-hackers
    7 Wi-Fi Security Tips: Avoid Being Easy Prey for Hackers
    7-wi-fi-security-tips:-avoid-being-easy-prey-for-hackers
    Kody Kinzie
    March 29, 2020
    While Wi-Fi offers the convenience of a seamless, untethered data connection, it comes with security disadvantages that hackers love to exploit. Without knowing the tricks hackers use to target Wi-Fi...