New Specula tool uses Outlook for remote code execution in Windows
July 29, 2024 at 05:45PM A new red team post-exploitation framework named “Specula” released by TrustedSec turns Microsoft Outlook into a C2 beacon to execute code remotely. This framework bypasses security features and allows attackers to run arbitrary commands on compromised Windows systems. The CVE-2017-11774 vulnerability is exploited, making it a persistent and impactful threat. … Read more