Microsoft fixes Outlook zero-day used by Russian hackers since April 2022

The vulnerability (CVE-2023-23397) was reported by CERT-UA, and it’s a critical Outlook elevation of privilege security flaw exploitable without user interaction in low-complexity attacks.

Related Stories

Classic 1960s Flip Clock Gets NTP Makeover

Is Your USB-C Dock Out To Hack You?

Recreating one of History’s Best Known Spy Gadgets

You may have missed

Bypassing UAC with PowerShell

CVE-2023-27055

Why America’s Children Stopped Falling in Love with Reading

CVE-2023-27087 (xxl-job)