Techly NewsGet the app

Get the latest tech news

A Windows Vulnerability Reported by the NSA Was Exploited To Install Russian Malware


"Kremlin-backed hackers have been exploiting a critical Microsoft vulnerability for four years," Ars Technica reported this week, "in attacks that targeted a vast array of organizations with a previously undocumented tool, the software maker disclosed Monday. "When Microsoft patched the vulnerabi...

"Kremlin-backed hackers have been exploiting a critical Microsoft vulnerability for four years," Ars Technica reported this week, "in attacks that targeted a vast array of organizations with a previously undocumented tool, the software maker disclosed Monday. "When Microsoft patched the vulnerability in October 2022 — at least two years after it came under attack by the Russian hackers — the company made no mention that it was under active exploitation." Since as early as April 2019, Forest Blizzard has been exploiting CVE-2022-38028 in attacks that, once system privileges are acquired, use a previously undocumented tool that Microsoft calls GooseEgg.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Russian

Russian

Photo of nsa

nsa

Photo of russian malware

russian malware

Related news:

News photo

The Russian Hacker Group Sandworm is Back: New Kapeka Malware Secretly Infecting Systems Since 2022

News photo

Microsoft: APT28 hackers exploit Windows flaw reported by NSA

News photo

Windows vulnerability reported by the NSA exploited to install Russian malware

« WebSim, WorldSim and the Summer of Simulative AI
Despite complaints, Apple hasn’t yet removed an obviously fake app pretending to be RockAuto »