Massive Password Spray Campaign Targeting Azure CLI
Threat actors are compromising Microsoft 365 environments in a massive password spray campaign targeting the Azure CLI, cybersecurity firm Huntress warns.
Between June 12 and 21, the company observed over 81 million login attempts against its customers, with 78 user accounts across 64 organizations already compromised.
During the two-week window, the hackers compromised 2-4 accounts daily, with a spike around June 22, when 23 businesses were compromised.
According to Huntress, most of the login attempts originated from AS32167, an autonomous system linked to internet hosting provider LSHIY LLC.
“These attacks are part of a large wave of credential spray attacks across a few different ASNs. In the past six months, Huntress has observed the volume of credential spray attacks increase by over 155 times across our customer base,” the cybersecurity company says.
Huntress noticed a surge in password spray attacks in late May and early June, across multiple businesses....
Copyright of this story solely belongs to securityweek.com. To see the full text click HERE