Security News > 2021 > October > Microsoft: Iran-linked hackers target US defense tech companies
Iran-linked threat actors are targeting the Office 365 tenants of US and Israeli defense technology companies in extensive password spraying attacks.
The activity cluster was temporarily dubbed DEV-0343 by researchers at Microsoft Threat Intelligence Center and Microsoft Digital Security Unit, who have tracked it since late July.
"Targeting in this DEV-0343 activity has been observed across defense companies that support United States, European Union, and Israeli government partners producing military-grade radars, drone technology, satellite systems, and emergency response communication systems,' Microsoft says."
Microsoft has directly notified customers that have been targeted or compromised, providing them with the information they need to secure their accounts.
Since the attacks have started, less than 20 targets have been compromised, with Microsoft noting that Office 365 accounts with multifactor authentication toggled are resilient against DEV-0343's password spray attacks.
"They typically target dozens to hundreds of accounts within an organization, depending on the size, and enumerate each account from dozens to thousands of times," Microsoft says.
News URL
Related news
- Microsoft: macOS bug lets hackers install malicious kernel drivers (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- US sanctions Chinese firm, hacker behind telecom and Treasury hacks (source)
- Hackers game out infowar against China with the US Navy (source)
- Subaru Starlink flaw let hackers hijack cars in US and Canada (source)
- US freezes foreign aid, halting cybersecurity defense and policy funds for allies (source)
- Microsoft tests Edge Scareware Blocker to block tech support scams (source)
- Spain arrests suspected hacker of US and Spanish military agencies (source)
- Hackers spoof Microsoft ADFS login pages to steal credentials (source)
- Suspected NATO, UN, US Army hacker arrested in Spain (source)