Cybercriminals are chaining Microsoft s Zerologon flaw with other exploits in order to infiltrate government systems, a new CISA and FBI advisory warns. Microsoft recently warned of exploits by an advanced persistent threat (APT) actor, which the company calls MERCURY (also known as MuddyWater, Static Kitten and Seedworm) Cisco Talos researchers also warned of a spike in exploitation attempts against the bug. Microsoft released a patch for the bug as part of its August 11, 2020 Patch Tuesday security updates.
Source: https://threatpost.com/election-systems-attack-microsoft-zerologon/160021/