Microsoft said today that Russian hackers have been exploiting the vulnerability tracked as CVE-2020-38028 since at least 2020. That would make it an 0day at the time Microsoft patched it in October 2022. And yet, Microsoft has never acknowledged that vulnerability as such. What's up with that?
https://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-compromise-tool-for-exploiting-cve-2022-38028-to-obtain-credentials/
https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-38028
Dan Goodin /
npub1yy…p6r3v
2024-04-22 17:43:54
Author Public Key
npub1yyl6ktycvjymch9hyzq5yqphj89kalfqmtswcjpjmp7s67ms6g9sdp6r3vPublished at
2024-04-22 17:43:54Event JSON
{
"id": "a43fcc69d316c3a3509201e5be127d2fea8c155000b754e5000ef0b9bf123487",
"pubkey": "213fab2c986489bc5cb7208142003791cb6efd20dae0ec4832d87d0d7b70d20b",
"created_at": 1713807834,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/dangoodin/statuses/112316110254551044",
"activitypub"
]
],
"content": "Microsoft said today that Russian hackers have been exploiting the vulnerability tracked as CVE-2020-38028 since at least 2020. That would make it an 0day at the time Microsoft patched it in October 2022. And yet, Microsoft has never acknowledged that vulnerability as such. What's up with that?\n\nhttps://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-compromise-tool-for-exploiting-cve-2022-38028-to-obtain-credentials/\n\nhttps://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2022-38028",
"sig": "de6169d61c870d7d6f0f7d3c4b2520a06f9f2b57c0228c166d86fe67028d16a18f42240a916cc3271a2ee18c5f8a077ea79f24ba0dce0631b31220c72363efe1"
}