Extensive APT28 attack campaign with Outlook zero-day detailed

At least 30 organizations across 14 countries, most of which are part of NATO, and a NATO Rapid Deployable Corps have been targeted by Russian state-sponsored threat operation APT28, also known as Fancy Bear, Fighting Ursa, and Sofacy, in attacks involving the exploitation of a Microsoft Outlook vulnerability, tracked as CVE-2023-23397, during the past 20 months, reports BleepingComputer.

apt28 attack attacks bear campaign countries critical-infrastructure-security cve cve-2023-23397 email security exploitation fancy bear fighting fighting ursa microsoft microsoft outlook nato organizations outlook rapid russian sofacy sponsored state threat threat intelligence vulnerability zero-day