![]() Microsoft communication did not mention how criminals are using CVE-2023 – 23397 during their attacks. However, Outlook for Android, iOS, Mac and Outlook for Web (OWA) are not affected. The bug may affect you if you run an Exchange server and the Outlook for Windows desktop client. It’s considered relatively easy for criminals to replicate, which means more attacks are likely to follow. (Although many in the industry suggest this may be the tip of the iceberg.) Who Has It Hit So Far?Īccording to the Microsoft Security Resource Center (MSRC), it has been used already by a ‘Russia-based threat actor’ in targeted attacks against 15 European government, transport, energy, and military sectors. Specifically, it could attack the users of your desktop Outlook, core IT systems connected to Microsoft 365 and even recipients of emails sent through Outlook. It has a formidable ‘attack surface’, the terminology used by cyber security experts to describe the sum of vulnerabilities, pathways or methods a hacker can use. But there’s nothing sparkly or positive about this at all. The US government’s own National Vulnerability Database has awarded it 9.8 out of a maximum 10 on its threat scale.Ĭyber security journals online are referring to it as the ‘most far-reaching bug of the year’, which sounds, deceptively, like some kind of awards win. The really alarming part is this: the email activates automatically when it reaches Outlook. So far, so according to the criminal playbook. It helps a remote and unauthorised criminal get into systems by sending a special email that helps them steal a recipient’s personal login information. What is Microsoft Outlook Vulnerability CVE-2023 – 23397?ĬVE-2023 – 23397 is a critical ‘elevation of privilege’ vulnerability in the Microsoft Outlook/ 365 application suite. More on how to do that here.įor the rest, here’s further context and some best practice to follow. If you didn’t have enough on your plate…įor all the tl dr (too long didn’t read) crowd, here’s what to do: ensure you patch office and install quality updates. ![]() But here’s the thing – it can start wreaking havoc even without you clicking on the email. Here’s the headline facts: this Microsoft Outlook/365 vulnerability can infect your machine and devastate your organisation. When one of Intersys’ seasoned security experts refers to the Microsoft Outlook Vulnerability CVE-2023 – 23397 as ‘quite a nasty one’ we tend to take note.
0 Comments
Leave a Reply. |