October 2, 2023

Microsoft has confirmed disruption to its Microsoft 365 apps earlier this month due to DDoS attack.

Microsoft published the details of the DDoS attack, which was carried out by a threat actor it refers to as Storm-1359. The group who claimed responsibility for the attack calls itself Anonymous Sudan.

The attack against Microsoft’s services started on June 5, and impacted Outlook on the web first. Access to OneDrive was also impacted. Microsoft said the attacks most likely relied on “multiple virtual private servers in conjunction with rented cloud infrastructure, open proxies, and DDoS tools” and focused on Layer 7, which is the application layer of the internet.

Advertisements

Beyond that, no in-depth detail was given, but Microsoft did confirm that no customer data was accessed of compromised.

It also took the opportunity to recommend using Azure Web Application Firewall (WAF) if organizations want to protect themselves from similar Layer 7 attacks.

Tags:

Leave a Reply

You may have missed

McLaren Healthcare suffers a Ransomware Incident

October 2, 2023

TheCyberThrone CyberSecurity Newsletter Top 5 Articles – September, 2023

October 2, 2023

TheCyberThrone Security Week In Review – September 30, 2023

October 1, 2023

Mozilla fixes CVE-2023-5217 Vulnerability in its Products

September 30, 2023

CISA KEV Update Part III – September 2023

September 30, 2023

Exim Mail Transfer Server Vulnerabilities

September 30, 2023
%d bloggers like this: