Source |
InformationSecurityBuzzNews |
Identifiant |
7082776 |
Date de publication |
2022-09-23 13:14:19 (vue: 2022-09-23 14:05:35) |
Titre |
Microsoft Exchange Hack |
Texte |
Microsoft says a threat actor gained access to cloud tenants hosting Microsoft Exchange servers in credential stuffing attacks, with the end goal of deploying malicious OAuth applications and sending phishing emails. The attacker then used this inbound connector and transport rules designed to help evade detection to deliver phishing emails through the compromised Exchange servers. |
Envoyé |
Oui |
Condensat |
access actor applications attacker attacks cloud compromised connector credential deliver deploying designed detection emails end evade exchange gained goal hack help hosting inbound malicious microsoft oauth phishing rules says sending servers stuffing tenants then threat through transport used |
Tags |
Hack
Threat
|
Stories |
|
Notes |
|
Move |
|