CISA Insights on APT Compromise of Microsoft 365 Via Password Exploits
Health IT Security
The Department of Homeland Security Cybersecurity and Infrastructure Security Agency released an alert, warning that the advanced persistent threat (APT) actors behind the SolarWinds cyberattack are also leveraging compromised Microsoft 365 and Azure Applications to access cloud resources.
Specifically, CISA is currently investigating instances of threat actors potentially gaining initial access into victims’ networks through password guessing, password spraying, and or exploting inappropriately secured administrative or other service credentials, instead of compromised SolarWinds Orion products.
The provided insights complement...