Microsoft has released security patches for a serious privilege escalation vulnerability which affect all versions of its Windows operating system for enterprises released since 2007. Researchers at behavioral firewall specialist Preempt discovered two zero-day vulnerabilities in Windows NTLM security protocols, both of which allow attackers to create a new domain administrator account and get control of the entire domain. Windows users are strongly advised to install the latest updates as soon as possible in order to protect themselves against the active attacks in the wild. Microsoft has also released patches for 55 security vulnerabilities, which includes 19 critical, in several of its products.
Source: https://thehackernews.com/2017/07/windows-ntlm-security-flaw.html