Russians Used Microsoft’s Stolen Authentication Secrets to Access Source Code | allinfosecnews.com

March 13, 2024, 11:19 a.m. | Livia Gyongyoși

Heimdal Security Blog heimdalsecurity.com

Midnight Blizzard hackers used Microsoft’s stolen authentication secrets to advance into their internal system and access source code. The Russian attackers initially used password spraying to get into a legacy non-production test tenant account. Microsoft disclosed this initial attack in January 2024. The compromised account had access to an OAuth application with elevated privilege to […]

The post Russians Used Microsoft’s Stolen Authentication Secrets to Access Source Code appeared first on Heimdal Security Blog.

access account attack attackers authentication blizzard code compromised cybersecurity news hackers internal january january 2024 legacy microsoft midnight midnight blizzard non oauth password password spraying production russian russians secrets source code spraying stolen system test

More from heimdalsecurity.com / Heimdal Security Blog

Ticketmaster Breached? Data of Over 500 Million Customers For Sale 1 day, 17 hours ago | heimdalsecurity.com

actor breached breachforums claim +17

BBC Breached! Current And Former Employees Impacted by the Attack 1 day, 20 hours ago | heimdalsecurity.com

access attack bbc breach +20

Sav-Rx Data Breach Exposes Sensitive Information of Over 2.8 Million People 3 days, 18 hours ago | heimdalsecurity.com

access a network attackers awareness +18

Check Point VPNs under Attack. Vendor releases Hotfix for CVE-2024-24919 3 days, 23 hours ago | heimdalsecurity.com

access accounts attack attackers +32

Researchers Uncover Fake Antivirus Sites Spreading Malware 4 days, 15 hours ago | heimdalsecurity.com

advanced antivirus apk april +21

Experience Heimdal 4.2.0 Release Candidate 4 days, 18 hours ago | heimdalsecurity.com

all things heimdal children colleges compliance +15

[Free & Downloadable] Network Security Policy Template 1 week, 1 day ago | heimdalsecurity.com

assets availability best practice breaches +25

CLOUD#REVERSER Malware Campaign Uses Google Drive and Dropbox 1 week, 1 day ago | heimdalsecurity.com

campaign can cloud cloud storage +25

Heimdal to Showcase Widest Cybersecurity Tech Stack at Infosecurity Europe 2024 1 week, 2 days ago | heimdalsecurity.com

all things heimdal cybersecurity cybersecurity experts cybersecurity news +20

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com