Russian Hackers Breach Microsoft’s Code Base
Microsoft announced the cyber campaign by the Russian-state-sponsored ‘Midnight Blizzard’ hackers, resulting in the group stealing the tech giant’s source code.
The sophisticated ‘Midnight Blizzard’ campaign is said to be rooted in a grander scheme to gain unauthorized access to Microsoft’s environment using the stolen source code.
Dropbox Used for Phishing Campaign
Darktrace revealed a phishing campaign that leverages legitimate Dropbox infrastructure to steal credentials and distribute malware payloads.
The threat actors leverage the use of Dropbox to evade MFA protocols via socially engineered emails to lure victims to download malware and share sign-in credentials.
PetSmart Warns Customers of Password-Guessing Attacks
PetSmart warned its customers of a recent wave of password-guessing attacks for customers logged into the PetSmart website.
Despite the PetSmart network being free from a breach, the PetSmart team has deactivated the passwords for thousands of users, forcing users to reset their passwords, to mitigate the wave of attacks.
