this post was submitted on 19 Feb 2024
260 points (97.4% liked)

Cybersecurity

5774 readers
187 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

founded 2 years ago
MODERATORS
 

For the first time in the history of Microsoft, a cyberattack has left hundreds of executive accounts compromised and caused a major user data leak as Microsoft Azure was attacked.

According to Proofpoint, the hackers use the malicious techniques that were discovered in November 2023. It includes credential theft through phishing methods and cloud account takeover (CTO) which helped the hackers gain access to both Microsoft365 applications as well as OfficeHome.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 13 points 9 months ago (3 children)

every day i lose my mind a little more at how much trust hundreds of thousands of companies across the world place in third parties like microsoft to handle literally all of their sensitive data, as if that could be a good idea in any universe

[–] [email protected] 13 points 9 months ago (1 children)

While I don't disagree it's dangerous, most companies handling their own data would likely do a lot worse, just with smaller chance of being targeted.

[–] [email protected] 2 points 4 months ago

That's a fair point to be honest but it would mean more job openings for me, so... /j

[–] [email protected] 3 points 9 months ago

Especially when history has shown that Microsoft had and has issues with security basically everywhere.

[–] [email protected] 2 points 9 months ago

Not just companies. Governments. I know of entire governmental departments that run exclusively off of a M$ environment. People who deal with capital C Confidential information are backing it up into OneDrive. It's lunacy.