all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spooler Vulnerability, CVE-2022-38028

Add to bookmarks
April 24, 2024, 1:15 p.m. | Ameer Owda

SOCRadar® Cyber Intelligence Inc. socradar.io

APT28 Deploys ‘GooseEgg’ in Attacks Exploiting the Windows Print Spooler Vulnerability, CVE-2022-38028 Microsoft recently shed light on a campaign orchestrated by the Russian-based threat actor Forest Blizzard, employing a custom tool named ‘GooseEgg’ to escalate privileges and pilfer credentials from networks. Of significant concern, the threat actors exploit the CVE-2022-38028 vulnerability present in the Windows Print Spooler service. CISA, acknowledging its […]

actor apt28 attacks blizzard campaign credentials cve cyber news exploit exploiting forest forest blizzard gooseegg microsoft networks print print spooler privileges russian shed threat threat actor threat actors tool vulnerability windows windows print spooler

Visit resource

More from socradar.io / SOCRadar® Cyber Intelligence Inc.

The Impact of Cyber Attacks on the Stock Markets 1 day ago | socradar.io
attacks companies corporate cyber +15
New High-Severity Vulnerability in Apache ActiveMQ Poses Risk of Unauthorized Access: CVE-2024-32114 1 day, 1 hour ago | socradar.io
access activemq apache apache activemq +16
Top 10 Free IoC Search & Enrichment Platforms 1 day, 3 hours ago | socradar.io
amp assets attacks breaches +34
Top 10 Takeaways from Verizon DBIR 2024 Report 1 day, 19 hours ago | socradar.io
breach breaches cyber cyber security +18
The Future of Passwordless Authentication in Cybersecurity 2 days, 3 hours ago | socradar.io
actions authentication biometric clicking +17
Latin America Under Threat: The Venom RAT Campaign’s Cyber Invasion Initiative 4 days, 3 hours ago | socradar.io
action actor america campaign +14
New iMessage 0-Day Exploit, U.S. Healthcare Breach, Access Sales & Dark Web Recruitment Posts 5 days, 3 hours ago | socradar.io
0-day exploit access amp breach +15
ShadowRay Campaign Exploits Critical Ray Framework Vulnerabilities to Compromise AI Workloads Globally 1 week ago | socradar.io
anyscale breach campaign compromise +13
Threat Actor Profile: Molerats 1 week, 1 day ago | socradar.io
actor cyber cyber espionage cyber threat +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

QA Customer Response Engineer

@ ORBCOMM | Sterling, VA Office, Sterling, VA, US
View on infosec-jobs.com

Enterprise Security Architect

@ Booz Allen Hamilton | USA, TX, San Antonio (3133 General Hudnell Dr) Client Site
View on infosec-jobs.com

DoD SkillBridge - Systems Security Engineer (Active Duty Military Only)

@ Sierra Nevada Corporation | Dayton, OH - OH OD1
View on infosec-jobs.com

Senior Development Security Analyst (REMOTE)

@ Oracle | United States
View on infosec-jobs.com

Software Engineer - Network Security

@ Cloudflare, Inc. | Remote
View on infosec-jobs.com

Software Engineer, Cryptography Services

@ Robinhood | Toronto, ON
View on infosec-jobs.com
View more jobs