Novel tool leveraged by APT28 to exploit old Windows vulnerability | allinfosecnews.com

April 23, 2024, 3:11 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Data exfiltration and privilege escalation attacks leveraging the novel GooseEgg hacking tool to exploit an already addressed Windows Print Spooler flaw, tracked as CVE-2022-38028, have been deployed by Russian cyberespionage operation APT28, also known as Forest Blizzard, against government, education, transportation, and non-government organizations since April 2019, BleepingComputer reports.

Article Link: Novel tool leveraged by APT28 to exploit old Windows vulnerability | SC Media

1 post - 1 participant

Read full topic

april apt28 article attacks bleepingcomputer blizzard cve cyberespionage data data exfiltration education escalation exfiltration exploit flaw forest forest blizzard gooseegg government hacking hacking tool non novel old organizations print print spooler privilege privilege escalation reports russian tool transportation vulnerability windows windows print spooler windows vulnerability

More from malware.news / Malware Analysis, News and Indicators - Latest topics

You get a passkey, you get a passkey, everyone should get a passkey an hour ago | malware.news

accounts can consumer cracked +10

Attackers evade detection by leveraging Microsoft Graph API an hour ago | malware.news

api article attackers cloud +15

Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383 2 hours ago | malware.news

article cisco credit credit monitoring +8

Code faster with generative AI, but beware the risks when you do 2 hours ago | malware.news

article can code coding +13

Proposed Bill Focuses on Voluntary AI Security Incident Reporting 3 hours ago | malware.news

ai security bill companies cybersecurity +21

The impact of automating open source dependency management 3 hours ago | malware.news

article business consuming customer +12

Diffusione di malware Keylogger tramite falsa pagina di Agenzia delle Entrate – PuntoFisco 4 hours ago | malware.news

agenzia delle entrate article cert con +5

Stronger cybersecurity aimed by Menlo Security, Google Cloud collaboration 6 hours ago | malware.news

article cloud collaboration customers +13

Mounting global ransomware attacks significantly impact US 7 hours ago | malware.news

article attacks avril haines director +12

Senior Security Specialist, Forsah Technical and Vocational Education and Training (Forsah TVET) (NEW)

@ IREX | Ramallah, West Bank, Palestinian National Authority

View on infosec-jobs.com

Consultant(e) Junior Cybersécurité

@ Sia Partners | Paris, France

View on infosec-jobs.com

Senior Network Security Engineer

@ NielsenIQ | Mexico City, Mexico

View on infosec-jobs.com

Senior Consultant, Payment Intelligence

@ Visa | Washington, DC, United States

View on infosec-jobs.com

Corporate Counsel, Compliance

@ Okta | San Francisco, CA; Bellevue, WA; Chicago, IL; New York City; Washington, DC; Austin, TX

View on infosec-jobs.com

Security Operations Engineer

@ Samsara | Remote - US

View on infosec-jobs.com