"Russian Hackers Use Old Outlook Vulnerability to Target Polish Orgs"

The Polish Cyber Command has warned that the Russian state-backed hacking group Forest Blizzard, also known as Fancy Bear and APT28, has been targeting public and private entities in Poland by exploiting a known Microsoft Outlook vulnerability, tracked as CVE-2023-23397. APT28 has a history of targeting government, non-governmental, energy, and transportation organizations in the US, Europe, and the Middle East. The Computer Security Incident Response Team of the Polish National Research Institute (CSIRT NASK) detected and reported new attacks linked to the group. Polish Cyber Command further analyzed the attacks and discovered that the threat actors accessed email accounts on Microsoft Exchange servers and changed folder permissions within the victim's mailbox. This article continues to discuss the Forest Blizzard hacking group's exploitation of a Microsoft Outlook vulnerability in attacks against public and private organizations in Poland.

Help Net Security reports "Russian Hackers Use Old Outlook Vulnerability to Target Polish Orgs"

Submitted by grigby1