The Latest Microsoft Midnight Blizzard Breach is a Wakeup Call for SaaS Security

10 months ago 49
News Banner

Looking for an Interim or Fractional CTO to support your business?

Read more
Originally published by Valence. Microsoft recently published new guidance on the nation-state attack that they initially disclosed on January 19. According to Microsoft, the Russian state-sponsored threat actor Midnight Blizzard (also known as NOBELIUM or APT29) was able to leverage a test tenant account and a legacy OAuth application to gain access to corporate email accounts, including members of senior leadership, cybersecurity team, legal team, and others, and exfiltrated some emails and...
Read Entire Article