Security News > 2025 > February > Botnet targets Basic Auth in Microsoft 365 password spray attacks
2025-02-24 17:49
A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, attempting to confirm credentials. [...]
News URL
Related news
- Microsoft Defender will isolate undiscovered endpoints to block attacks (source)
- Tycoon2FA phishing kit targets Microsoft 365 with new tricks (source)
- ActiveX blocked by default in Microsoft 365 because remote code execution is bad, OK? (source)
- Microsoft blocks ActiveX by default in Microsoft 365, Office 2024 (source)
- Attackers phish OAuth codes, take over Microsoft 365 accounts (source)
- Hackers abuse OAuth 2.0 workflows to hijack Microsoft 365 accounts (source)
- US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks (source)
- New Microsoft 365 outage impacts Teams and other services (source)
- New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors (source)
- US indicts leader of Qakbot botnet linked to ransomware attacks (source)