Microsoft Azure Hit With The Largest Data Breach In Its History; Hundreds Of Executive Accounts Compromised
Microsoft Azure Hit With The Largest Data Breach In Its History; Hundreds Of Executive Accounts Compromised
techreport.com
Microsoft Azure Hit With The Largest Data Breach In Its History; Hundreds Of Executive Accounts Compromised
For the first time in the history of Microsoft, a cyberattack has left hundreds of executive accounts compromised and caused a major user data leak as Microsoft Azure was attacked.
According to Proofpoint, the hackers use the malicious techniques that were discovered in November 2023. It includes credential theft through phishing methods and cloud account takeover (CTO) which helped the hackers gain access to both Microsoft365 applications as well as OfficeHome.
On one hand, I know we shouldn't blame people for falling for this stuff. People are often not educated well enough on the dangers and it's not reasonable to expect it. We should build things to be systematically secure even in the face of people falling for phishing.
On the other hand it's difficult not to be frustrated with this kind of thing... People really should know better than clicking random links and typing their password.
Azure products ask you for your identity and signin a lot. Honestly, I'm asked to log in again at least once every 24 hours. That's assuming I don't traverse some sort of service wall where I'm now in a different system after clicking a link.
I do cloud engineering for a living, and I would probably fall for at least some phishing things around Azure, specifically because azure identity management is so obtuse and constantly asking for things.
It's absolutely on the system that Microsoft designed , and the practices they encourage, and the mitagations that apparently don't exist.
MS products in general are a Rube Goldberg machine of domain redirects and authentication requests so you could easily(...?) slip another sneaky phishing site in the middle of the 14th ball drop and 18th cup-on-a-string-swinging-over-a-gap and I'd be one to fall for it. I use 1Pass and it's pretty much constantly popping up in MS website dialogue boxes demanding another password sacrifice before it will let me access some MS service that I was just on five minutes ago.
bing bing bing bing!
"Sign into your Microsoft account" here...
"Link your Microsoft account to Edge/[Insert MS product here]"
"Let's get you signed in" there.
"Try our Windows Hello! A new method of accessing your Microsoft account!" over there.
"Sorry you can't use your organization account here, sign into your personal account"
This is the monster Microsoft unleashed upon itself.
Thank you. Security verification has become so cumbersome that people just try to push through without thinking.
The amount of times I have had to do an MFA challenge for non-elevated access stuff while on company owned hardware connected to the company owned network is absurd.
I'm security minded and I absolutely hate using Microsoft because of this very reason.
I have a Microsoft account because stupid ass Windows needs it, I wanted PC GamePass and I was sick of constantly doing workarounds for the past 15 years. And what do I get for it? I need to log in for so many things. Accidentally open up Microsoft word? Login. Open game pass? Login. Play a game? Login. Game suddenly crashes? Oh because it failed to authenticate and I had to login into game pass again.
I would absolutely fall for this if I had to use microsoft products at work because of logging fatigue.
I work on service desk.
Nobody knows their password. It’s always a fucking song and dance when I ask them to type it in.
Except of course when they click a phishing link. Then they know every single piece of information required.
Blows my mind
If they did they wouldn't be contacting the service desk.