Vulnérabilité dans les produits Microsoft – CERT-FR
Tags
| country: | Cuba Montenegro Ukraine |
| attack-pattern: | Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 38a9056e-dc90-4fc4-a564-53a77530b8c6 |
| Fingerprint | 11cab7fffe27cc7 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | July 12, 2023, midnight |
| Added to db | July 12, 2023, 7:02 p.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | Objet: Vulnérabilité dans les produits Microsoft |
| Title | Vulnérabilité dans les produits Microsoft – CERT-FR |
| Detected Hints/Tags/Attributes | 22/2/21 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-006/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 119 | cve-2023-36884 |
|
| Details | Domain | 452 | msrc.microsoft.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | Domain | 83 | cert.gov.ua |
|
| Details | Domain | 55 | blog.google |
|
| Details | Domain | 53 | blogs.blackberry.com |
|
| Details | Domain | 45 | www.bankinfosecurity.com |
|
| Details | File | 4 | void-rabisu-s-use-of-romcom-backdoor-shows-a-growing-shift-in-th.html |
|
| Details | Microsoft Threat Actor Naming Taxonomy (Groups in development) | 79 | Storm-0978 |
|
| Details | Microsoft Threat Actor Naming Taxonomy (Groups in development) | 7 | storm-0978 |
|
| Details | Url | 4 | https://msrc.microsoft.com/update-guide/vulnerability/cve-2023-36884 |
|
| Details | Url | 5 | https://www.microsoft.com/en-us/security/blog/2023/07/11/storm-0978-attacks-reveal-financial-and-espionage-motives |
|
| Details | Url | 3 | https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/attack-surface-reduction-rules-reference?view=o365 |
|
| Details | Url | 4 | https://unit42.paloaltonetworks.com/cuba-ransomware-tropical-scorpius |
|
| Details | Url | 1 | https://cert.gov.ua/article/2394117 |
|
| Details | Url | 2 | https://blog.google/threat-analysis-group/ukraine-remains-russias-biggest-cyber-focus-in-2023 |
|
| Details | Url | 4 | https://www.trendmicro.com/en_us/research/23/e/void-rabisu-s-use-of-romcom-backdoor-shows-a-growing-shift-in-th.html |
|
| Details | Url | 4 | https://blogs.blackberry.com/en/2023/06/romcom-resurfaces-targeting-ukraine |
|
| Details | Url | 2 | https://blogs.blackberry.com/en/2023/07/romcom-targets-ukraine-nato-membership-talks-at-nato-summit |
|
| Details | Url | 2 | https://cert.gov.ua/article/5077168 |
|
| Details | Url | 1 | https://www.bankinfosecurity.com/cuba-ransomware-gang-takes-credit-for-attacking-montenegro-a-19938 |