Critical Windows Netlogon RCE flaw now exploited in attacks

The Centre for Cybersecurity Belgium (CCB) warned that threat actors are actively exploiting CVE-2026-41089, a recently patched critical Windows Netlogon stack-based buffer overflow (CVSS 9.8) that can allow unauthenticated remote code execution on domain controllers across supported Windows Server versions; the advisory urges immediate patching. The article also notes multiple other zero-day disclosures and in-the-wild exploitation of privilege escalation and BitLocker-related flaws tied to a researcher known as 'Nightmare Eclipse'.