Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack

Microsoft disclosed in a blog post last week that it had detected a Midnight Blizzard attack on its corporate systems on Jan. 12. The company said its investigation showed the attacker had likely breached its systems in November 2023 and has since then been exfiltrating information from email accounts belonging to senior leadership and employees in cybersecurity, legal, and other functions.

Midnight Blizzard gained initial access to Microsoft’s corporate network by using a common password spray attack to breach a legacy non-production test account. The threat actor then used that account’s permissions to access email accounts of interest at Microsoft.

Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address

Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack

26-Jan-24

Solutions

Services

Services

Knowledge

Solutions

Industries

Contact

Invinsense

About

INDIA | Ahmedabad

SRI LANKA

KUWAIT

USA | New York

UNITED KINGDOM | London

Address