// #zerologon

Netlogon Will Be Exploited Again. The Question Is Whether Your Architecture Has Changed Since Zerologon.

CVE-2026-41089 is the third significant Netlogon vulnerability with active exploitation in six years. Zerologon (CVE-2020-1472) prompted an industry-wide reckoning with domain controller exposure. If your DC network architecture has not materially changed since 2020, the reckoning was incomplete.