Microsoft fixes Outlook zero-day used by Russian hackers since April 2022
Microsoft has patched an Outlook zero-day vulnerability (CVE-2023-23397) exploited by a hacking group linked to Russia's military intelligence service GRU since April 2022. The vulnerability was used to target and breach the networks of fewer than 15 government, military, energy, and transportation organizations. Microsoft urges customers to patch their systems against CVE-2023-23397 or add users to the Protected Users group in Active Directory and block outbound SMB (TCP port 445) as a temporary mitigation. CVEs: CVE-2023-23397 Malware: APT28, FancyBear, Graphite, Sednit, Sofacy [View Article](https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-outlook-zero-day-used-by-russian-hackers-since-april-2022/)