Novel tool leveraged by APT28 to exploit old Windows vulnerability | allinfosecnews.com

April 23, 2024, 3:11 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Data exfiltration and privilege escalation attacks leveraging the novel GooseEgg hacking tool to exploit an already addressed Windows Print Spooler flaw, tracked as CVE-2022-38028, have been deployed by Russian cyberespionage operation APT28, also known as Forest Blizzard, against government, education, transportation, and non-government organizations since April 2019, BleepingComputer reports.

Article Link: Novel tool leveraged by APT28 to exploit old Windows vulnerability | SC Media

1 post - 1 participant

Read full topic

april apt28 article attacks bleepingcomputer blizzard cve cyberespionage data data exfiltration education escalation exfiltration exploit flaw forest forest blizzard gooseegg government hacking hacking tool non novel old organizations print print spooler privilege privilege escalation reports russian tool transportation vulnerability windows windows print spooler windows vulnerability

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Wireshark 4.2.5 Released, (Sat, May 18th) 11 hours ago | malware.news

article bugs center cve +13

The who, where, and how of APT attacks – Week in security with Tony Anscombe 21 hours ago | malware.news

apt article attacks campaigns +11

Leveling the cybersecurity playing field 1 day, 2 hours ago | malware.news

article blumira cybersecurity entry +4

Hardware cybersecurity leader, Flexxon, introduces Server Defender 1 day, 2 hours ago | malware.news

advanced article cybersecurity defender +8

Automated pentesting in the cloud 1 day, 2 hours ago | malware.news

article automated challenge cloud +10

How to revamp your cybersecurity in the middle of the chaos 1 day, 2 hours ago | malware.news

article attackers chaos cybersecurity +8

6K-plus AI models may be affected by critical RCE vulnerability 1 day, 4 hours ago | malware.news

ai models article attacks critical +14

Zscaler annual phishing report finds a near 60% increase in phishing attacks in 2023 1 day, 5 hours ago | malware.news

article attacks link media +6

Microsoft, North Korea, Santander, CISA, Deepfakes, Aaran Leyland & More - SWN #387 1 day, 6 hours ago | malware.news

amp article cisa deepfakes +8

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg

@ Hifield | Strasbourg, France

View on infosec-jobs.com

Lead Security Specialist

@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas

View on infosec-jobs.com

Consultant SOC / CERT H/F

@ Hifield | Sèvres, France

View on infosec-jobs.com