"Ongoing Azure Compromises Target Senior Execs, Microsoft 365 Apps"

Many environments and individual user accounts have been compromised as part of an ongoing campaign that targets Microsoft Azure corporate clouds. The activity includes data exfiltration, financial fraud, impersonation, and more against organizations in different geographic regions and industry verticals. Researchers have found that the activity is refined, with tailor-made phishing aimed at the highest-profile, highest-value individuals. According to a Proofpoint researcher, the attackers may seem opportunistic, but the wide range of post-compromise activities shows increasing sophistication. This article continues to discuss findings and observations regarding the ongoing campaign targeting Microsoft Azure corporate clouds.

Dark Reading reports "Ongoing Azure Compromises Target Senior Execs, Microsoft 365 Apps"

Submitted by grigby1