Security News > 2023 > December > Microsoft Warns of Kremlin-Backed APT28 Exploiting Critical Outlook Vulnerability
2023-12-05 06:59
Microsoft on Monday said it detected Kremlin-backed nation-state activity exploiting a critical security flaw in its Outlook email service to gain unauthorized access to victims' accounts within Exchange servers. The tech giant attributed the intrusions to a threat actor it called Forest Blizzard (formerly Strontium), which is also widely tracked under the monikers APT28,
News URL
https://thehackernews.com/2023/12/microsoft-warns-of-kremlin-backed-apt28.html
Related news
- Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score (source)
- Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability (source)
- Microsoft fixes Outlook drag-and-drop broken by Windows updates (source)
- Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution (source)
- Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
- Critical PHP RCE vulnerability mass exploited in new attacks (source)
- Microsoft says button to restore classic Outlook is broken (source)
- New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking (source)