Microsoft issued a security update in August 2020 to address a critical vulnerability in its Netlogon Remote Protocol (CVE-2020-1472). The exploit code for this vulnerability is now publicly available, and there are reports of active exploits taking place.
Successful exploitation of the vulnerability could allow attackers to gain domain administrator access to an exposed Active Directory server and perform malicious activities.
Administrators are strongly advised to patch your systems to the latest version immediately.
For more information, refer to: