Microsoft has updated the security update for Windows Server Zerologon (CVE-2020-1472) exploits. The update was issued as part of the August 2020 Patch Tuesday update. Microsoft is rolling out the fix in two stages, starting February 9, 2021 and February 9 in 2021. Attacks started September 26th, with attackers successfully exploiting a vulnerable Active Directory server honeypot using a vulnerability over the Internet. The vulnerability enables attackers to elevate privileges to a domain administrator and change any user’s password and execute any command they want.
Source: https://www.bleepingcomputer.com/news/security/microsoft-clarifies-patch-confusion-for-windows-zerologon-flaw/