The Latest Microsoft Midnight Blizzard Breach is a Wakeup Call for SaaS Security

9 months ago 40
News Banner

Looking for an Interim or Fractional CTO to support your business?

Read more
Originally published by Valence. Microsoft recently published new guidance on the nation-state attack that they initially disclosed on January 19. According to Microsoft, the Russian state-sponsored threat actor Midnight Blizzard (also known as NOBELIUM or APT29) was able to leverage a test tenant account and a legacy OAuth application to gain access to corporate email accounts, including members of senior leadership, cybersecurity team, legal team, and others, and exfiltrated some emails and...
Read Entire Article