all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Russian Threat Actors Exploit Outlook Flaw to Hijack Exchange Accounts

Add to bookmarks
Dec. 8, 2023, 3:12 p.m. | Team Nuspire

Security Boulevard securityboulevard.com

Microsoft’s recent warning regarding active exploits by Russian state-sponsored threat actors, particularly APT28 (Forest Blizzard, Strontium or Fancy Bear), has highlighted a significant vulnerability within Microsoft Outlook.   Tell me more about the Microsoft Outlook vulnerability  This vulnerability, labeled CVE-2023-23397, poses a severe risk to Microsoft Exchange accounts and can lead to the potential exposure of sensitive data. The vulnerability affects ... Read More


The post Russian Threat Actors Exploit Outlook Flaw to Hijack Exchange Accounts appeared first on Nuspire. …

accounts apt28 bear blizzard blog cve cve-2023-23397 exchange exploit exploits fancy bear flaw forest hijack microsoft microsoft exchange microsoft outlook outlook risk russian sponsored state strontium threat threat actors vulnerability warning

Visit resource

More from securityboulevard.com / Security Boulevard

What is General Data Protection Regulation Act (GDPR)? 6 hours ago | securityboulevard.com
act adoption center challenges +32
Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness 16 hours ago | securityboulevard.com
automation awareness chief cloud +28
USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 19 hours ago | securityboulevard.com
access authors conference events +15
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656) 21 hours ago | securityboulevard.com
ant application customers cve +21
Understanding Cybersecurity Vulnerabilities 21 hours ago | securityboulevard.com
advice attacks can cybersecurity +12
Bridging the Gap: Uniting Development and AppSec 22 hours ago | securityboulevard.com
application security appsec aspm bridging the gap +20
Open-Source Software Security 23 hours ago | securityboulevard.com
blog blog post cloud cloud-native +14
USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android … 23 hours ago | securityboulevard.com
access android authors conference +20
How to secure GraphQL APIs: challenges and best practices 1 day, 1 hour ago | securityboulevard.com
apis api security best practices challenges +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)

@ WWC Global | Reston, Virginia, United States
View on infosec-jobs.com

Security Architect (DevSecOps)

@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium
View on infosec-jobs.com

Infrastructure Security Architect

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Contract Penetration Tester

@ Evolve Security | United States - Remote
View on infosec-jobs.com

Senior Penetration Tester

@ DigitalOcean | Canada
View on infosec-jobs.com
View more jobs