• Platform
    Anti-Ransomware Assurance
    Explore our entire preemptive cyber defense platform
    Adaptive Exposure Management
    Infiltration Protection
    Impact Protection
    Incident Response
    Automated Moving Target Defense
    Learn more about our patented AMTD technology

    Discover Morphisec’s Ransomware-Free Guarantee

    Learn more
  • Solutions
    USE CASES
    Preemptive Cyber Defense
    Ransomware Prevention
    Efficiency & Cost Savings
    EDR + MORPHISEC
    Microsoft Defender 
    CrowdStrike
    SentinelOne
    Palo Alto Networks 
    BitDefender
    Sophos
    Trend Micro
    Arctic Wolf
    BY INDUSTRY
    Finance
    Manufacturing
    Healthcare
    Professional Services
    Technology
    Education
    Lean IT Teams
  • Customer Stories
    Customer Stories
    Hear our customers' stories through case studies, reviews, and videos
    TruGreen's cybersecurity "10x stronger" with Morphisec
    Merrick Bank closes security gaps, improves audit scores
    Bupa Latin America fortifies its security posture
    Global hedge fund protects Bloomberg Terminals
    Citizens Medical Center protects patient data
    Radwell turns to Morphisec & Microsoft for unified security
    Yaskawa Motoman takes on advanced threats
    Houston Eye Associates prevents ransomware
    Morphisec protects Fortune 500 manufacturer

    “Morphisec prevents attacks from actually happening, it gives us an early warning sign… and that lets me make informed, intelligent decisions.”

    Richard Rushing, CISO at Motorola
  • Company
    About Us
    Careers
    Contact Us
    Threat Labs News Events Support
  • Resources
    Blog
    New threat research and expert insights 
every week
    Featured Article

    Morphisec’s Ransomware-Free Guarantee: Setting a New Standard for Anti-Ransomware Protection 

    Resource Center
    Datasheets, white papers, videos, and everything in-between
    Featured Resource

    Achieving Adaptive Cyber Resiliency with Automated Moving Target Defense

    Explore the Platfrom, take the tour.

    Go to platform tour
  • Partners
    Partner Program Overview
    Become a Partner
    Managed Service Providers Value Added Resellers Technology Alliances Partner Portal
Get a demo

Exploiting Outlook RCE: A Deep Dive into SecTor 2025’s Signature of Destruction

Webinar
Virtual
December 4, 2025
1:00 PM ET
Save my spot

Outlook RCE vulnerabilities continue to be a critical threat vector for organizations worldwide, with roaming signatures and cloud-based settings introducing new avenues for attackers to exploit. Following his acclaimed SecTor 2025 session, Michael Gorelik, CTO and Head of Malware Research at Morphisec, will lead an in-depth exploration of recent vulnerabilities, including CVE-2025-21357 and CVE-2025-41176, and their implications for enterprise security.
Moderated by Brad LaPorte, this webinar will not only analyze the attack techniques presented at SecTor but will also provide actionable insights to protect your organization from similar threats.

What to Expect:

  • Discover The Anatomy of Outlook Exploits: A deep dive into the vulnerabilities exposed in CVE-2025-21357 and CVE-2025-41176, including improper pathname sanitization and roaming signature exploitation.
  • Learn About Roaming Signatures Vulnerabilities: Explore how attackers leverage Outlook’s cloud-based roaming signatures for persistence and backdooring, and why improper sanitization remains a major security gap.
  • Watch a Live Demonstration: Watch as Michael Gorelik demonstrates the exploitation lifecycle from attacker to victim, showcasing real-world attack scenarios and their impact.
  • Hear Research Directions and Recommendations: Learn about new attack surfaces discovered during SecTor research, including unsanitized APIs, non-standard file types, and <img>-based information disclosure risks.
  • Gain Actionable Defense Strategies: Gain practical recommendations to secure your organization, including patching, monitoring sync anomalies, and implementing defense-in-depth measures like MFA and least privilege.

Why Attend?

  • Learn from the Expert: Get exclusive insights from Michael Gorelik, one of the leading voices in vulnerability research and incident response.
  • Understand Emerging Threats: Stay ahead of attackers by understanding the latest exploitation techniques targeting Outlook’s cloud and local settings.
  • Strengthen Your Defenses: Walk away with actionable recommendations to mitigate risks and protect your organization from similar vulnerabilities.

Speakers

Michael Gorelik

Morphisec CTO & Head of Malware Research

Michael Gorelik is a globally-renowned cybersecurity expert who collaborates extensively with the FBI and US Department of Homeland Security to counter global cybercrime.

Brad laPorte Headshot

Brad LaPorte

Morphisec CMO

Brad LaPorte is a seasoned cybersecurity expert, Gartner veteran, and former military officer specializing in cybersecurity and military intelligence for the United States military and allied forces.

Reserve Your Spot Today

Seats are limited—don’t miss this opportunity to gain exclusive insights into Outlook RCE exploits and how to defend against them.

© 2025 Morphisec. All rights reserved.

Inquire via Azure