Security vendor Malwarebytes hacked through Office 365 and Azure access>
IT News – Juha Saarinen
Co-founder Marcin Kieczynski said that an investigation found that the attackers, believed to be Russian, gained access to a “a limited subset of internal company emails”.

Kieczynski said Malwarebytes found no further breaches, and added that the company’s software remains safe to use.

The attacker is believed to have abused applications with privileged access to Microsoft Office 365 and the Azure cloud computing environment to breach Malwarebytes, Kieczynski said.

A flaw in Azure Active Directory discovered in 2019 allows attackers to abuse third-party applications to get access to tenants, Kieczynski said.

In Malwarebytes’ case, the attacker added a self-signed digital certificate with credentials to the service principal account.
Link: https://www.itnews.com.au/news/security-vendor-malwarebytes-hacked-through-office-365-and-azure-access-559936