Ongoing campaign compromises senior execs' Azure accounts, locks them using MFA

Ongoing campaign compromises senior execs' Azure accounts, locks them using MFA

Briefly

The campaign attempts to compromise targeted Azure environments by sending account owners emails that integrate techniques for credential phishing and account takeovers.

Ars Technicahttps://arstechnica.com/security/2024/02/ongoing-campaign-compromises-senior-execs-azure-accounts-locks-them-using-mfa/

Threat actors seemingly direct their focus toward a wide range of individuals holding diverse titles across different organizations, impacting hundreds of users globally.

Ars Technicahttps://arstechnica.com/security/2024/02/ongoing-campaign-compromises-senior-execs-azure-accounts-locks-them-using-mfa/