This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove unc3944-microsoft-azure-access-to-virtual-machines
Remove Blog Related Topics
Cybersecurity Threat Reports Threat Detection Cyber threats Encryption Risk Accountability Technology Architecture Data breaches More Related Topics >
article thumbnail

Attacker uses the Azure Serial Console to gain access to Microsoft VM

CSO Magazine

MAY 17, 2023

Financially motivated threat actor UNC3944 is using phishing and SIM swapping attacks to take over Microsoft Azure admin accounts and gain access to virtual machines (VM), according to cybersecurity firm Mandiant. UNC3944 has been active since May 2022.

Accountability 100
Accountability Phishing Software Cybersecurity 100
article thumbnail

UNC3944 Uses Azure Serial Console for Stealthy Access to Virtual Machines

Heimadal Security

MAY 17, 2023

Researchers revealed that the UNC3944 threat actors use phishing and SIM-swapping attacks to get control over Microsoft Azure admin accounts. Hackers maliciously used the Azure Serial Console on Azure Virtual Machines (VM) to deploy remote management software within client environments.

Phishing 92
Phishing Accountability Software Cybersecurity 92
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 29,000+ Insiders by signing up for our newsletter

About
Webinars
About
Editions
Webinars
Editions
Topics
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024