Threat actors, TA505 and MERCURY, exploiting ZeroLogon to attack and gain account control privileges

Microsoft recently warned that more cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks.  Threat actor TA505, a financially motivated threat group that has been active since at least 2014, is now exploiting this vulnerability. 

from Cyber Security News https://ift.tt/3jRkbhr