Microsoft has enabled enforcement mode for updates addressing the Zerologon vulnerability in Windows on all devices that received patches as part of the last "Patch Tuesday".

Zerologon (CVE-2020-1472) is a privileges escalation vulnerability in Windows Server. The problem is related to the use of an unreliable encryption algorithm in the Netlogon authentication mechanism. Zerologon allows to simulate any computer on the network while authenticating to a domain controller, disable Netlogon security features, and change the password in the domain controller's Active Directory database.

“Microsoft strongly recommends that customers install the February updates to be fully protected  from this vulnerability. Customers whose Windows devices are configured to receive automatic updates do not need to take any further action,” Microsoft explained.

Source: securitylab.ru