microsoft
microsoft
15
March, 2023
0
Fix for Microsoft Outlook’s Zero-Day Vulnerability
Overview Microsoft has released a new critical vulnerability, scoring a 9.8 out of a maximum of 10 on the CVSS chart. The vulnerability, CVE-2023-23397, is an Elevation of Privilege (EoP)…
22
December, 2022
Threat Actors Bypass Microsoft Exchange ProxyNotShell Mitigations
Overview In September of 2022, GTSC reported a critical infrastructure attack that took place in August of 2022. The investigation revealed that the threat actor used two zero-day vulnerabilities in…
13
December, 2022
Microsoft’s Update on Malicious Use of Signed Drivers
Overview Microsoft completed its investigation regarding the Microsoft Windows Hardware Developer Program-certified drivers that were being used maliciously in post-exploitation activity. The investigation, which was launched in late October of…