Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mstdn.social/users/rysiek/statuses/111789512243552397">Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Sunday, 21-Jan-2024 08:03:38 JST</a><a href="https://mstdn.social/@rysiek" title="rysiek@mstdn.social"><img src="https://gnusocial.jp/avatar/13472-48-20221025105231.webp" width="48" height="48" alt='Michał "rysiek" Woźniak · 🇺🇦' style="position: absolute; left: 0; top: 0;">Michał "rysiek" Woźniak · 🇺🇦</a><div><a href="https://mstdn.social/@rysiek/111789491640663336" rel="in-reply-to">in reply to</a></div></section><article><p>&gt; Beginning in late November 2023, the threat actor used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents. <br><a href="https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/" rel="nofollow noreferrer">https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/</a></p><p><a href="https://mstdn.social/tags/Microsoft" rel="tag">#Microsoft</a> <a href="https://mstdn.social/tags/InfoSec" rel="tag">#InfoSec</a> <a href="https://mstdn.social/tags/MidnightBlizzard" rel="tag">#MidnightBlizzard</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2614054#notice-5178192">In conversation</a><time datetime="2024-01-21T08:03:38+09:00" title="Sunday, 21-Jan-2024 08:03:38 JST">about 10 months ago</time> <span>from <span><a href="https://mstdn.social/@rysiek/111789512243552397" rel="external" title="Sent from mstdn.social via ActivityPub">mstdn.social</a></span></span><a href="https://mstdn.social/@rysiek/111789512243552397">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: msrc.microsoft.com</div><h5><a href="https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/#Microsoft">Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard | MSRC Blog | Microsoft Security Response Center</a></h5><div> from <span>MSRC</span></div></header><div>Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Michał "rysiek" Woźniak · 🇺🇦 (rysiek@mstdn.social)'s status on Sunday, 21-Jan-2024 08:03:38 JST Michał "rysiek" Woźniak · 🇺🇦
in reply to
> Beginning in late November 2023, the threat actor used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents.
https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/
#Microsoft #InfoSec #MidnightBlizzard
In conversationabout 10 months ago from mstdn.socialpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: msrc.microsoft.com
  Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard | MSRC Blog | Microsoft Security Response Center
  from MSRC
  Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard

Public

Embed Notice

HTML Code

Corresponding Notice