Cisco Talos report a spike in exploitation attempts against the Microsoft vulnerability CVE-2020-1472, known as the Zerologon bug. A successful exploit allows an unauthenticated attacker with network access to a domain controller to completely compromise all Active Directory identity services. The issue is a critical flaw rating 10 out of 10 on the CvSS severity scale. U.S. Cybersecurity and Infrastructure Security Agency issued a dire warning that the vulnerability poses an unacceptable risk to the Federal Civilian Executive Branch and requires an immediate and emergency action
Source: https://threatpost.com/zerologon-attacks-microsoft-dcs-snowball/159656/