Threat Actors Target Critical Windows Netlogon Flaw CVE-2026-41089

A critical Windows Netlogon vulnerability (CVE-2026-41089, CVSS 9.8) disclosed in Microsoft’s May 12, 2026 Patch Tuesday can allow unauthenticated remote code execution on domain controllers; the Centre for Cybersecurity Belgium warns that threat actors are actively exploiting the flaw in the wild and urges immediate patching, although Microsoft has not yet confirmed verified active attacks.