USCYBERCOM Warns of Cyber Threats from Microsoft Outlook Bug

Jeff Brody

The U.S. Cyber Command has found that a known Microsoft Outlook bug is being used to launch malicious attacks, Nextgov reported Friday. CYBERCOM said in a tweet dated July 3 that it recommends immediate patching for systems that may be impacted by malware.

According to Milpita, Calif.-based cybersecurity firm FireEye,  Iranian and other adversary hackers have been exploiting the CVE-2017-11774 bug to “cause confusion for many security professionals.”

“If Outlook launches something malicious, a common assumption is that the impacted user has been phished — which is not what is occurring here. The organization may waste valuable time without focus on the root cause,” the company said in a statement.

Previously, FireEye published a blog post that identifies a group called APT33 that works “at the behest of the Iranian government” as the source for such threats.

Check Also

FireEye

FireEye to Provide Cybersecurity Defenses to Texas DIR; Pat Sheridan Quoted

FireEye, Inc. has announced that it will offer cyber security defenses to Texas public sector agencies, under Texas Department of Information Resources (DIR), the company reported on Thursday. Through the end of 2020, FireEye security products and Mandiant Solutions services will be available to all Texas agencies, county governments, cities and school districts through DIR’s Bulk Purchase Initiative for Endpoint Detection and Response (EDR) solutions.