Vulnerabilities Microsoft Patches Zero-Click Outlook Vulnerability That Could Soon Be Exploited Microsoft’s June 2024 Patch Tuesday updates resolve a zero-click Outlook vulnerability leading to remote code execution. Ionut ArghireJune 12, 2024
Vulnerabilities Microsoft Warns of Exploited Exchange Server Zero-Day Microsoft says a newly patched Exchange Server vulnerability (CVE-2024-21410) has been exploited in attacks. Ionut ArghireFebruary 15, 2024
Identity & Access New NTLM Hash Leak Attacks Target Outlook, Windows Programs Varonis finds one vulnerability and three attack methods that can be used to obtain NTLM hashes via Outlook and two Windows programs. Eduard KovacsJanuary 22, 2024
Malware & Threats Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE Akamai researchers document more vulnerabilities and patch bypasses leading to zero-click remote code execution in Microsoft Outlook. Ionut ArghireDecember 19, 2023
Cyberwarfare Russian APT Used Zero-Click Outlook Exploit Russian threat actor APT28 has been exploiting a no-interaction Outlook vulnerability in attacks against 14 countries. Ionut ArghireDecember 8, 2023