Microsoft just suffered a major attack on their internal email systems. The culprits were deemed to be Russian state actors.
It appears the attackers overtook “legacy” accounts and created malicious OAUTH access. Cyber forensic expert Greg Kutzbach, an expert on digital discovery, will spell out the hack, and more importantly, how organizations can defend themselves.
The start of the solution to this problem is review of the permissions - especially the permissions on service accounts. YouAttest will show how enterprises can both review their current accounts and be triggered on changes in permission on service and other key accounts.
Need to automate your identity audits? Contact us at YouAttest - we will show you how - youattest.com/contact/
Негізгі бет Ғылым және технология The Microsoft Email Hack - Service/User Accounts Used for OAUTH SSO
Пікірлер