Security company Malwarebytes suspects a breach of its Office 365 and Azure tenancies is by the same attacker behind the SolarWinds hack, but reckons flaws in Azure Active Directory security are also to blame.
Malwarebytes, whose products include widely used anti-malware tools for consumers and businesses, said that it does not use SolarWinds but believes that the same attacker used "another intrusion vector that works by abusing applications with privileged access to Microsoft Office 365 and Azure environments".
The attack was spotted because of suspicious activity reported by Microsoft's Security Response Center.
Copying/Pasting full or partial texts with adding very little original content are frowned upon by the community. Repeated copy/paste posts could be considered spam. Spam is discouraged by the community and may result in the account being Blacklisted.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit