Information security
fromTheregister
1 week agoAWS nails Russia's Cozy Bear trying to nick Microsoft creds
APT29 used watering-hole attacks and Cloudflare-mimicking domains to trick Microsoft users into authorizing attacker-controlled devices and gaining access to accounts and data.