CVE-2020-1472 Zerologon is about to go into the wild. Is XG able to detect those logon attacks with IPS?
This thread was automatically locked due to age.
CVE-2020-1472 Zerologon is about to go into the wild. Is XG able to detect those logon attacks with IPS?
Here you go: Details on the attack: https://nakedsecurity.sophos.com/2020/09/17/zerologon-hacking-windows-servers-with-a-bunch-of-zeros/
IPS Signatures with the matching attacks: https://docs.sophos.com/nsg/threatlabs/SFOS/IPSSummary.html
https://docs.sophos.com/nsg/threatlabs/SFOS/IPSReleaseNotes/9.17.45_s.pdf // https://docs.sophos.com/nsg/threatlabs/SFOS/IPSReleaseNotes/7.17.45_s.pdf
**Edit** Hopefully i did not break anything. FloSupport I accidentally flagged my post as spam.
