Category : Alert | Sub Category : Notification Posted on 2023-07-21 23:21:28
By Microsoft Threat Intelligence, Storm-0978 attacks reveal financial and espionage motives.
Microsoft has identified a phishing campaign conducted by the threat actor tracked as Storm-0978 targeting defense and government entities in Europe and North America. The campaign involved the abuse of CVE-2023-36884, which included a remote code execution vulnerability exploited before disclosure to Microsoft via Word documents, using lures related to the Ukrainian World Congress.
© Microsoft 2023.