Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Vulnerability in Microsoft Outlook makes users believe in phishing emails
A new vulnerability has just been discovered by a security researcher on the Microsoft Outlook platform. This vulnerability makes users believe in phishing emails.
The cause of the problem was that Outlook's Address Book displayed the user's contact information including information from the Internationalized Domain Name (IDN). Meanwhile, IDN consists of letters from different scripts such as Cyrillic with face shapes similar to those in the Latin alphabet.
Therefore, bad guys can easily take advantage of this vulnerability to impersonate individuals from reputable organizations. Users will be easily fooled when looking at contact information with fake domains that look like the real thing.
This vulnerability was discovered by a security researcher nicknamed Dobby1Kenobi. He reported it to Microsoft and Microsoft confirmed the issue but refused to patch the vulnerability at the time.
Microsoft believes that Outlook users should not trust the sender's identity without a digital signature. Although spoofing issues can occur, Microsoft decided not to patch to avoid false positives.
However, recently Microsoft finally released the necessary patch. As reported by Windows Central, in Outlook 16.0.14228.20216, Microsoft fixed the issue reported by Dobby1Kenobi. Therefore, to be on the safe side, you should update your Outlook to the latest version.
In addition, to avoid being scammed, always pay attention to the identity of the sender. In case of an important transaction, in addition to online identity verification, you need to combine direct contact to ensure safety.
Samuel DanielYou should read it
- Microsoft Outlook RCE Vulnerability Can Sell For $400,000
- Leaked series of screenshots of Microsoft's new 'One Outlook' email client for Windows 11
- 7 Outlook.com tricks you may not know yet
- Microsoft Outlook acceleration tips
- Error cannot open Outlook, this is a fix
- How to use Microsoft Outlook for project management
- Microsoft fixes a serious security hole
- How to use the Outlook.com Beta version
May be interested
- New series of Bluetooth vulnerabilities discovered that could put millions of Windows and Android devices worldwide in trouble
hackers can easily take advantage of existing vulnerabilities in the bluetooth protocol to deploy many different violating activities. - Beware of the 'Windows 11 Alpha' cyberattack campaigntaking advantage of the interest of users, cybercriminals are deploying windows 11-themed phishing campaigns.
- This unremarkable looking Lightning cable can steal your data and send it to hackersapple has switched to using the usb-c connection standard on the latest generation of ipad pro, and this should probably be applied to new iphone models soon as well. this not only provides convenience, but also helps limit security risks.
- Warning: Detected malicious code hidden in the graphics card's VRAMone of the aspects that make cybercriminals dangerous lies in the initiative they take in deploying new forms of malicious attacks.
- Microsoft Exchange server hacked by LockFile ransomwarethe hacker group behind a new ransomware called lockfile has encrypted windows domains after hacking into microsoft exchange servers with the proxyshell vulnerability.
- Suspected FBI hacked, leaked top secret data on the internet1.9 million records of suspected terrorists managed by the fbi were leaked on the internet over a three-week period, from july 19 to august 9, 2021.
Outlook on Android is about to add phishing email feature
How to report phishing emails in Outlook.com
Microsoft Outlook acceleration tips
How to identify phishing emails
Microsoft warns of phishing campaigns targeting Outlook Web App and Office 365 users