Password-spraying from Tehran. DDoS notes. Ransomware and UK businesses. Journalists awarded Nobel. US espionage case.


Attacks, Threats, and Vulnerabilities

Microsoft: Iran-linked hackers breached Office 365 customer accounts (The Record by Recorded Future) Microsoft said today that a new Iran-linked hacking group has targeted more than 250 Office 365 tenants and compromised accounts for less than 20.

Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors (Microsoft Security Blog) MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on United States and Israeli defense technology companies, Persian Gulf ports of entry, or global maritime transportation companies with business presence in the Middle East.

Microsoft said it mitigated a 2.4 Tbps DDoS attack, the largest ever (The Record by Recorded Future) Microsoft said its Azure cloud service mitigated a 2.4 terabytes per second (Tbps) distributed denial of service attack this year, at the end of August, representing the…

Read full article at