News

Latest news about B2B cyber security >>> PR agencies: add us to your mailing list - see contact! >>> Book an exclusive PartnerChannel for your news!

Tag: CVE-2023-23397

KRITIS: Outlook zero-day vulnerability exploited for months
6 April 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Mandiant experts believe that the Outlook zero-day vulnerability (CVE-2023-23397) has been used in Organization and Critical Infrastructure (KRITIS) attacks for almost 12 months and was also used by Russian actors in the Ukraine attack. Mandiant has tracked and documented early exploitation of the vulnerability under the tentative group name UNC4697. The attacks have now been publicly attributed to APT28, a Russian actor associated with the GRU secret service. The vulnerability has been deployed against government agencies, logistics companies, oil and gas operators, defense contractors, and the transport industry in Poland, Ukraine, Romania, and Turkey since April 2022. Outlook vulnerability…

Read more

Outlook attack works without a click!
March 25, 2023
| No comments
| Short news
B2B Cyber ​​Security ShortNews

Even the BSI warns of the CVE-2023-23397 vulnerability in Outlook, as it can be exploited without a single click from a user. Tenable experts tested a simple scenario in which the attack succeeds even though the email was only received and not clicked. Recent coverage of the CVE-2023-23397 Outlook vulnerability has prompted Tenable to shed a little more light on the topic. A comment from Satnam Narang, Senior Staff Research Engineer at Tenable. While private users or single-user PCs are usually automatically protected by Windows updates, administrators have to check the patch themselves or...

Read more

© 2024 MedPressIT GbR
Cookie Settings