US Cyber Command has issued an unprecedented alert about the “active malicious use” of a critical vulnerability in Microsoft Outlook by Iranian hackers. The warning follows recent reports that Iran and the US are targeting each other in offensive cyber campaigns in the midst of mounting tensions between the two countries.
Cyber Command recently discovered that Iranian threat actors are targeting people with a malicious link in an attempt to take advantage of the flaw, tracked as CVE-2017-11774, on vulnerable systems. If someone running an unpatched version of Outlook interacts with the URL, the hackers will be able to take control of their machine. While the flaw was discovered and patched in 2017, many systems are likely still vulnerable.
Read more: US Military Warns Outlook Users To Update Immediately Over Hack Linked To Iran