Microsoft credentials pilfered by APT Storm via botnet spray-and-pray router attack

1 November 2024

Chinese threat actor Storm-0940 has been stealing credentials from Microsoft customers by leveraging the Quad7 botnet to launch highly-evasive password spray attacks on a broad cross-section of organizations in Europe and North America. In an October 31 blog post, Microsoft Threat Intelligence said Storm-0940 has been active since at least 2021 and typically obtains access through password spray and brute-force attacks, or by exploiting or misusing network edge applications and services.

Source: SC Magazine

Date:

1 November 2024

Categorie(s):

NEWS

Tag(s):

Botnets, Chinese, IT, Microsoft, News

How Ransomware Jeopardizes Healthcare Organizations17 November 2024
Are Identity Theft Protection Services Worth the Money? It’s Complicated17 November 2024
Week in review: Microsoft patches actively exploited 0-days, Amazon and HSBC employee data leaked17 November 2024
Google’s Gemini AI Chatbot Keeps Telling Users to Die16 November 2024
Cybersecurity Flaws in US Drinking Water Systems Put 26 Million at Risk16 November 2024