Extensive APT28 attack campaign with Outlook zero-day detailed | allinfosecnews.com

Dec. 8, 2023, 11:59 p.m. | SC Staff

SC Magazine feed for Strategy www.scmagazine.com

At least 30 organizations across 14 countries, most of which are part of NATO, and a NATO Rapid Deployable Corps have been targeted by Russian state-sponsored threat operation APT28, also known as Fancy Bear, Fighting Ursa, and Sofacy, in attacks involving the exploitation of a Microsoft Outlook vulnerability, tracked as CVE-2023-23397, during the past 20 months, reports BleepingComputer.

apt28 attack attacks bear campaign countries critical-infrastructure-security cve cve-2023-23397 email security exploitation fancy bear fighting fighting ursa microsoft microsoft outlook nato organizations outlook rapid russian sofacy sponsored state threat threat intelligence vulnerability zero-day

More from www.scmagazine.com / SC Magazine feed for Strategy

Impact of organizational structure on ransomware outcomes: Where does your org fit in? 19 hours ago | www.scmagazine.com

challenges core security detection expertise +12

AI sparks increasing cyber concerns for execs amid growing adoption 1 day ago | www.scmagazine.com

adoption ai-benefitsrisks aiml artificial +8

More details on rural water system breach sought by legislators 1 day ago | www.scmagazine.com

alejandro mayorkas breach critical-infrastructure-security cyberattack +23

Phishing attack compromises LA County Health Services data 1 day, 1 hour ago | www.scmagazine.com

attack bleepingcomputer compromised data +17

Android device hijacking facilitated by new Brokewell banking trojan 1 day, 1 hour ago | www.scmagazine.com

android android device android devices attacks +14

Microsoft credentials targeted by phishing campaign using Autodesk Drive 1 day, 1 hour ago | www.scmagazine.com

account accounts autodesk campaign +16

Five ways security leaders can demonstrate the business value of cybersecurity 1 day, 3 hours ago | www.scmagazine.com

board board members business business value +11

Rubrik IPO signals potential cybersecurity-led tech market revival 1 day, 16 hours ago | www.scmagazine.com

cloud security cybersecurity data security experts +7

Navigating the cyber seas: Clarity, compliance, and unified endpoint management 1 day, 18 hours ago | www.scmagazine.com

can clarity compass compliance +8

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)

@ WWC Global | Reston, Virginia, United States

View on infosec-jobs.com

Security Architect (DevSecOps)

@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium

View on infosec-jobs.com

Infrastructure Security Architect

@ Ørsted | Kuala Lumpur, MY

View on infosec-jobs.com

Contract Penetration Tester

@ Evolve Security | United States - Remote

View on infosec-jobs.com

Senior Penetration Tester

@ DigitalOcean | Canada

View on infosec-jobs.com