CISA’s urgent warning exposes how attackers are exploiting built-in admin tools to silently seize control of enterprise networks.