Notorious cyber gang UNC3944 – the crew suspected of involvement in the recent attacks on Snowflake and MGM Entertainment, and plenty more besides – has changed its tactics and is now targeting SaaS applications
UNC3944's crooked callers would often claim they were receiving a new phone, which necessitated a multi-factor authentication reset. VMware's vSphere hybrid cloud management tool was one target of attacks made after compromising SSO tools. Microsoft's Azure was another. Both were targeted so that UC3944 operatives could create virtual machines within an org and use them for their evil activities. Doing so makes sense because an org's own resources will mostly use IP addresses within a range designated as safe.
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Source: TheRegister - 🏆 67. / 61 Read more »
Source: TheRegister - 🏆 67. / 61 Read more »
Source: TheRegister - 🏆 67. / 61 Read more »
Source: Daily_Record - 🏆 9. / 89 Read more »
Source: EchoWhatsOn - 🏆 74. / 59 Read more »
Source: TheSun - 🏆 64. / 61 Read more »