Hackers Target Azure Accounts With Malware-Laden Shared Documents>
PC Magazine – Joe Hindy
A campaign by threat actors is targeting senior executives at various organizations using Azure Cloud accounts.
The attack involves credential phishing and cloud account takeover techniques, with attackers registering their multi-factor authentication methods to lock out victims.
After stealing the account, attackers typically access sensitive files, target other employees, conduct financial fraud, and cover their tracks.
Several weeks ago, federal cybersecurity officials warned of a spike in Androxgh0st malware targeting Azure credentials as well as AWS, Microsoft Office 365, SendGrip, and Twilio.
Link: https://www.pcmag.com/news/hackers-target-azure-accounts-with-malware-laden-shared-documents