Security News > 2023 > June > Microsoft Blames Massive DDoS Attack for Azure, Outlook, and OneDrive Disruptions

"These attacks likely rely on access to multiple virtual private servers in conjunction with rented cloud infrastructure, open proxies, and DDoS tools," the tech giant said in a post on Friday.
Redmond said it further observed the threat actor launching layer 7 DDoS attacks from multiple cloud services and open proxy infrastructures.
"This attack is where the client opens a connection to a web server, requests a resource, and then fails to acknowledge the download," the Microsoft Security Response Center said.
Anonymous Sudan has been making waves in the threat landscape with a series of DDoS attacks against Swedish, Dutch, Australian, and German organizations since the start of the year.
KillNet has also attracted attention for its DDoS attacks on healthcare entities hosted in Microsoft Azure, which have surged from 10-20 attacks in November 2022 to 40-60 attacks daily in February 2023.
Anonymous Sudan's Russian connections have also become evident in the wake of its collaboration with KillNet and REvil to form a "DARKNET parliament" and orchestrate cyber attacks on European and U.S. financial institutions.
News URL
https://thehackernews.com/2023/06/microsoft-blames-massive-ddos-attack.html
Related news
- New ClickFix attack deploys Havoc C2 via Microsoft Sharepoint (source)
- New Eleven11bot botnet infects 86,000 devices for DDoS attacks (source)
- Microsoft 365 apps will prompt users to back up files in OneDrive (source)
- Microsoft says button to restore classic Outlook is broken (source)
- Microsoft Exchange Online outage affects Outlook web users (source)
- Hidden Threats: How Microsoft 365 Backups Store Risks for Future Attacks (source)
- Microsoft fixes button that restores classic Outlook client (source)
- Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware (source)
- DDoS Attacks Now Key Weapons in Geopolitical Conflicts, NETSCOUT Warns (source)
- Microsoft Defender will isolate undiscovered endpoints to block attacks (source)