CVE-2023-23397: Microsoft Outlook Zero-Day Exploited by APT28 | allinfosecnews.com

March 21, 2023, 7 p.m. | Gustavo Palazolo

Threat Labs - Netskope www.netskope.com

Summary A now fixed zero-day elevation of privilege (EoP) vulnerability in Microsoft Outlook (CVE-2023-23397) allows attackers to send craft emails to exploit Outlook. The vulnerability does not require user interaction to be exploited and runs even before the email is visualized in the preview pane of Outlook, which makes this vulnerability even more dangerous. CVE-2023-2339 […]

The post CVE-2023-23397: Microsoft Outlook Zero-Day Exploited by APT28 appeared first on Netskope.

apt28 attackers cve cve-2023-23397 email emails eop exploit exploited microsoft microsoft outlook netskope outlook preview preview pane privilege send threat labs vulnerability zero-day

More from www.netskope.com / Threat Labs - Netskope

Netskope Threat Labs Stats for March 2024 3 days, 9 hours ago | www.netskope.com

actionable actionable intelligence active threats apps +22

Netskope Threat Coverage: Evil Ant Ransomware 1 week, 3 days ago | www.netskope.com

ant continuity down drives +18

Cloud Threats Memo: Multiple Legitimate Cloud Storage Services Exploited to Target Israeli Organizations 3 weeks, 3 days ago | www.netskope.com

app apps cloud cloud apps +19

Netskope Threat Labs Stats for February 2024 1 month ago | www.netskope.com

actionable actionable intelligence active threats apps +23

From Delivery To Execution: An Evasive Azorult Campaign Smuggled Through Google Sites 1 month, 1 week ago | www.netskope.com

azorult campaign data defender +21

Cloud Threats Memo: Google Drive Abused to Target Organizations in Asian Countries 1 month, 2 weeks ago | www.netskope.com

advanced advanced persistent threat apt campaign +28

Netskope Threat Labs Stats for January 2024 2 months, 1 week ago | www.netskope.com

actionable actionable intelligence active threats apps +21

Cloud Threats Memo: Back to the Basics: New DarkGate Campaign Exploiting Microsoft Teams 2 months, 2 weeks ago | www.netskope.com

back basics campaign campaigns +29

Rising Threats: Social Engineering Tactics in the Cloud Age 2 months, 3 weeks ago | www.netskope.com

access age attackers attacks +27

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India

View on infosec-jobs.com

Oracle EBS DevSecOps Developer

@ Accenture Federal Services | Arlington, VA

View on infosec-jobs.com

Information Security GRC Specialist - Risk Program Lead

@ Western Digital | Irvine, CA, United States

View on infosec-jobs.com

Senior Cyber Operations Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States

View on infosec-jobs.com

AI Cybersecurity Architect

@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)

View on infosec-jobs.com