Extensive APT28 attack campaign with Outlook zero-day detailed

9 December 2023

At least 30 organizations across 14 countries, most of which are part of NATO, and a NATO Rapid Deployable Corps have been targeted by Russian state-sponsored threat operation APT28, also known as Fancy Bear, Fighting Ursa, and Sofacy, in attacks involving the exploitation of a Microsoft Outlook vulnerability, tracked as CVE-2023-23397, during the past 20 months, reports BleepingComputer. Organizations in the energy production and distribution, material, personnel, and air transportation, and pipeline operations sectors were also subjected to such intrusions, according to a report from Palo Alto Networks’ Unit 42.

Source: SC Magazine

Date:

9 December 2023

Categorie(s):

NEWS

Tag(s):

APT28, Microsoft, Microsoft Office, Microsoft Outlook, Threat Intelligence

Understanding Scattered Spider, and how they perform cloud-centric identity attacks2 May 2024
Dropbox Sign customer data accessed in breach2 May 2024
Florida man gets 6 years behind bars for flogging fake Cisco kit to US military2 May 2024
Patch up – 4 critical bugs in ArubaOS lead to remote code execution2 May 2024
Menlo Security inks cybersecurity partnership with Google Cloud2 May 2024