all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Storm-0978 attacks reveal financial and espionage motives

Add to bookmarks
July 11, 2023, 5:30 p.m. | Microsoft Threat Intelligence

Microsoft Security Blog www.microsoft.com

Microsoft has identified a phishing campaign conducted by the threat actor tracked as Storm-0978 targeting defense and government entities in Europe and North America. The campaign involved the abuse of CVE-2023-36884, which included a zero-day remote code execution vulnerability exploited via Microsoft Word documents.


The post Storm-0978 attacks reveal financial and espionage motives appeared first on Microsoft Security Blog.

abuse actor america attacks campaign code code execution cve cve-2023-36884 defense documents entities espionage europe exploited financial government microsoft microsoft word north north america phishing phishing campaign remote code remote code execution storm-0978 targeting threat threat actor vulnerability vulnerability exploited word zero-day

Visit resource

More from www.microsoft.com / Microsoft Security Blog

Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials 5 days, 12 hours ago | www.microsoft.com
blizzard compromise credentials cve +20
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters 1 week, 3 days ago | www.microsoft.com
access attack attackers blog +17
How Microsoft discovers and mitigates evolving attacks against AI guardrails 2 weeks, 2 days ago | www.microsoft.com
address attacks blog guardrails +8
Explore Microsoft’s AI innovations at RSA Conference 2024 3 weeks, 2 days ago | www.microsoft.com
ai innovations blog conference event +12
Get end-to-end protection with Microsoft’s unified security operations platform, now in public preview 3 weeks, 3 days ago | www.microsoft.com
can center comprehensive approach cybersecurity +14
​​Frost & Sullivan names Microsoft a Leader in the Frost Radar™: Managed Detection and Response, … 1 month ago | www.microsoft.com
amp and response center defender +25
Microsoft Copilot for Security: General Availability details 1 month, 1 week ago | www.microsoft.com
amplify april availability copilot +13
Microsoft Copilot for Security is generally available on April 1, 2024, with new capabilities 1 month, 2 weeks ago | www.microsoft.com
april capabilities copilot govern +6
Enhancing protection: Updates on Microsoft’s Secure Future Initiative 1 month, 3 weeks ago | www.microsoft.com
blog customers engineering future +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Application Security Engineer - Enterprise Engineering

@ Meta | Bellevue, WA | Seattle, WA | New York City | Fremont, CA
View on infosec-jobs.com

Security Engineer

@ Retool | San Francisco, CA
View on infosec-jobs.com

Senior Product Security Analyst

@ Boeing | USA - Seattle, WA
View on infosec-jobs.com

Junior Governance, Risk and Compliance (GRC) and Operations Support Analyst

@ McKenzie Intelligence Services | United Kingdom - Remote
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com
View more jobs