- Kremlin-backed hackers exploit critical Windows vulnerability reported by the NSA, targeting various organizations with a previously undocumented tool.
- Microsoft patched the vulnerability in October 2022, two years after the attacks began, without mentioning ongoing exploitation.
- Forest Blizzard, linked to Russian military intelligence, has been exploiting CVE-2022-38028 since at least June 2020.
- The hacking group uses GooseEgg, a post-exploitation malware, to elevate privileges and install additional malware for various objectives.
- GooseEgg is installed using a batch script after successful exploitation of vulnerabilities like CVE-2023-23397, allowing for persistent access and lateral movement within networks.
Related Video
Published on: December 18, 2020
Description: NewsNation on WGN America.
Suspected ‘ongoing’ Russian hacking spree reached into federal agencies, Microsoft
Related Wikipedia Articles
Topics: No responseResponse
Response may refer to: Call and response (music), musical structure Reaction (disambiguation) Request–response Output or response, the result of telecommunications input Response (liturgy), a line answering a versicle Response (music) or antiphon, a response to a psalm or other part of a religious service Response, a phase in emergency management...
Read more: Response
