Attacker uses the Azure Serial Console to gain access to Microsoft VM

17 May 2023

Financially motivated threat actor UNC3944 is using phishing and SIM swapping attacks to take over Microsoft Azure admin accounts and gain access to virtual machines (VM), according to cybersecurity firm Mandiant. Using access to virtual machines the attackers employed malicious use of the Serial Console on Azure Virtual Machines to install third-party remote management software within client environments, Mandiant said in a blog.

Read full article on CSO Online

Date:

17 May 2023

Categorie(s):

NEWS

Tag(s):

Azure, Consoles, IT, News, Serial

Study Reveals Alarming Levels of USPS Phishing Traffic29 April 2024
Experts weigh in on the MITRE nation-state cyberattack29 April 2024
New DHS AI safety, security board introduced29 April 2024
Web traffic of fake USPS sites similar to legitimate site29 April 2024
Cloud sector rejects proposed know-your-customer EO29 April 2024