One Article Review
| Source |  Volexity |
|---|---|
| Identifiant | 8648428 |
| Date de publication | 2025-02-13 22:32:30 (vue: 2025-02-13 23:07:14) |
| Titre | Multiple Russian Threat Actors Targeting Microsoft Device Code Authentication |
| Texte | >KEY TAKEAWAYS Volexity has observed multiple Russian threat actors conducting social-engineering and spear-phishing campaigns targeting organizations with the ultimate goal of compromising Microsoft 365 accounts via Device Code Authentication phishing. Device Code Authentication phishing follows an atypical workflow to that expected by users, meaning users may not recognize it as phishing. Recent campaigns observed have been politically themed, particularly around the new administration in the United States and the changes this might mean for nations around the world. Starting in mid-January 2025, Volexity identified several social-engineering and spear-phishing campaigns by Russian threat actors aimed at compromising Microsoft 365 (M365) accounts. These attack campaigns were highly targeted and carried out in a variety of ways. The majority of these attacks originated via spear-phishing emails with different themes. In one case, the eventual breach began with highly tailored outreach via Signal. Through its investigations, Volexity discovered that Russian threat actors were impersonating […]
>KEY TAKEAWAYS Volexity has observed multiple Russian threat actors conducting social-engineering and spear-phishing campaigns targeting organizations with the ultimate goal of compromising Microsoft 365 accounts via Device Code Authentication phishing. Device Code Authentication phishing follows an atypical workflow to that expected by users, meaning users may not recognize it as phishing. Recent campaigns observed have been politically themed, particularly around the new administration in the United States and the changes this might mean for nations around the world. Starting in mid-January 2025, Volexity identified several social-engineering and spear-phishing campaigns by Russian threat actors aimed at compromising Microsoft 365 (M365) accounts. These attack campaigns were highly targeted and carried out in a variety of ways. The majority of these attacks originated via spear-phishing emails with different themes. In one case, the eventual breach began with highly tailored outreach via Signal. Through its investigations, Volexity discovered that Russian threat actors were impersonating […] |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 2025 365 >key accounts actors administration aimed around attack attacks atypical authentication been began breach campaigns carried case changes code compromising conducting device different discovered emails engineering eventual expected follows goal has have highly identified impersonating investigations its january m365 majority may mean meaning microsoft mid might multiple nations new not observed one organizations originated out outreach particularly phishing politically recent recognize russian several signal social spear starting states tailored takeaways targeted targeting themed themes these threat through ultimate united users variety volexity ways workflow world |
| Tags | Threat |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.