Malicious campaign targets Microsoft Azure accounts. Hundreds of individuals with executive roles are affected. Campaign started in November 2023 and is still active. Threat actors use spear phishing emails with shared documents. They gain access to Microsoft365 and 'OfficeHome' accounts. Post-compromise activities include MFA manipulation, data exfiltration, phishing, and fraud. Proofpoint provides mitigation recommendations. Hashtags: #MaliciousCampaign #MicrosoftAzure #Cybersecurity #SpearPhishing #DataExfiltration #PhishingFraud
https://www.infosecurity-magazine.com/news/malicious-campaign-microsoft-azure/
GenAINews.top / Herjan Security
npub1k7…436zj
2024-02-13 04:47:22
Author Public Key
npub1k7kxqar86wqd5w2kzqn6t0gq4yqwnxjkqx03yldkr7r28jzza7mqk436zjPublished at
2024-02-13 04:47:22Event JSON
{
"id": "992316c1e0c23e150d3c41fa58a0595e89ce3703f181d861365977c9e8ffd8ab",
"pubkey": "b7ac607467d380da39561027a5bd00a900e99a56019f127db61f86a3c842efb6",
"created_at": 1707796042,
"kind": 1,
"tags": [],
"content": "Malicious campaign targets Microsoft Azure accounts. Hundreds of individuals with executive roles are affected. Campaign started in November 2023 and is still active. Threat actors use spear phishing emails with shared documents. They gain access to Microsoft365 and 'OfficeHome' accounts. Post-compromise activities include MFA manipulation, data exfiltration, phishing, and fraud. Proofpoint provides mitigation recommendations. Hashtags: #MaliciousCampaign #MicrosoftAzure #Cybersecurity #SpearPhishing #DataExfiltration #PhishingFraud \n https://www.infosecurity-magazine.com/news/malicious-campaign-microsoft-azure/",
"sig": "841d718440a577e9fb4871f172cfb6b8d832c537f644c34067634297a8b7ab9e3570d5dd3a162a0b58659cfbc8995ab950693382e41ba42deb654bdeb096b317"
}