all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets

Add to bookmarks
Sept. 14, 2023, 4:30 p.m. | Microsoft Threat Intelligence

Microsoft Security Blog www.microsoft.com

Since February 2023, Microsoft has observed a high volume of password spray attacks attributed to Peach Sandstorm, an Iranian nation-state group. In a small number of cases, Peach Sandstorm successfully authenticated to an account and used a combination of publicly available and custom tools for persistence, lateral movement, and exfiltration.


The post Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets appeared first on Microsoft Security Blog.

account attacks campaigns cases collection enable february high intelligence intelligence collection iranian lateral movement microsoft nation password password spray peach sandstorm persistence sandstorm spray state tools value

Visit resource

More from www.microsoft.com / Microsoft Security Blog

Microsoft named overall leader in KuppingerCole Leadership Compass for ITDR 16 hours ago | www.microsoft.com
and response capabilities compass detection +22
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials 1 week, 2 days ago | www.microsoft.com
blizzard compromise credentials cve +20
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters 2 weeks ago | www.microsoft.com
access attack attackers blog +17
How Microsoft discovers and mitigates evolving attacks against AI guardrails 2 weeks, 6 days ago | www.microsoft.com
address attacks blog guardrails +8
Explore Microsoft’s AI innovations at RSA Conference 2024 3 weeks, 6 days ago | www.microsoft.com
ai innovations blog conference event +12
Get end-to-end protection with Microsoft’s unified security operations platform, now in public preview 4 weeks ago | www.microsoft.com
can center comprehensive approach cybersecurity +14
​​Frost & Sullivan names Microsoft a Leader in the Frost Radar™: Managed Detection and Response, … 1 month ago | www.microsoft.com
amp and response center defender +25
Microsoft Copilot for Security: General Availability details 1 month, 1 week ago | www.microsoft.com
amplify april availability copilot +13
Microsoft Copilot for Security is generally available on April 1, 2024, with new capabilities 1 month, 2 weeks ago | www.microsoft.com
april capabilities copilot govern +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Associate Manager, BPT Infrastructure & Ops (Security Engineer)

@ SC Johnson | PHL - Makati
View on infosec-jobs.com

Cybersecurity Analyst - Project Bound

@ NextEra Energy | Jupiter, FL, US, 33478
View on infosec-jobs.com

Lead Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Junior Information Security Coordinator (Internship)

@ Garrison Technology | London, Waterloo, England, United Kingdom
View on infosec-jobs.com

Sr. Security Engineer

@ ScienceLogic | Reston, VA
View on infosec-jobs.com
View more jobs