Malware distributor Storm-0324 facilitates ransomware access | allinfosecnews.com

Sept. 12, 2023, 5 p.m. | Microsoft Threat Intelligence

Microsoft Security Blog www.microsoft.com

The threat actor that Microsoft tracks as Storm-0324 is a financially motivated group known to gain initial access using email-based initial infection vectors and then hand off access to compromised networks to other threat actors. These handoffs frequently lead to ransomware deployment. Beginning in July 2023, Storm-0324 was observed distributing payloads using an open-source tool […]

The post Malware distributor Storm-0324 facilitates ransomware access appeared first on Microsoft Security Blog.

access actor compromised deployment distributor email infection initial access july july 2023 malware microsoft networks ransomware storm storm-0324 threat threat actor threat actors

More from www.microsoft.com / Microsoft Security Blog

Microsoft named overall leader in KuppingerCole Leadership Compass for ITDR 1 day, 5 hours ago | www.microsoft.com

and response capabilities compass detection +22

Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials 1 week, 3 days ago | www.microsoft.com

blizzard compromise credentials cve +20

Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters 2 weeks, 1 day ago | www.microsoft.com

access attack attackers blog +17

How Microsoft discovers and mitigates evolving attacks against AI guardrails 3 weeks ago | www.microsoft.com

address attacks blog guardrails +8

Explore Microsoft’s AI innovations at RSA Conference 2024 4 weeks ago | www.microsoft.com

ai innovations blog conference event +12

Get end-to-end protection with Microsoft’s unified security operations platform, now in public preview 4 weeks, 1 day ago | www.microsoft.com

can center comprehensive approach cybersecurity +14

Frost & Sullivan names Microsoft a Leader in the Frost Radar™: Managed Detection and Response, … 1 month, 1 week ago | www.microsoft.com

amp and response center defender +25

Microsoft Copilot for Security: General Availability details 1 month, 2 weeks ago | www.microsoft.com

amplify april availability copilot +13

Microsoft Copilot for Security is generally available on April 1, 2024, with new capabilities 1 month, 2 weeks ago | www.microsoft.com

april capabilities copilot govern +6

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Information Security Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX

View on infosec-jobs.com

Principal Security Researcher (Advanced Threat Prevention)

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

EWT Infosec | IAM Technical Security Consultant - Manager

@ KPMG India | Bengaluru, Karnataka, India

View on infosec-jobs.com

Security Engineering Operations Manager

@ Gusto | San Francisco, CA; Denver, CO; Remote

View on infosec-jobs.com

Network Threat Detection Engineer

@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC

View on infosec-jobs.com