Amazon Disrupts Russian Hackers Targeting Microsoft 365

Amazon has taken active measures to disrupt a cyber-espionage operation linked to Midnight Blizzard, a Russian state-backed hacking group also tracked as APT29. The campaign targeted Microsoft 365 accounts in an attempt to steal sensitive information, according to cybersecurity researchers. As part of the intervention, Amazon disrupts Russian hackers by neutralizing infrastructure used to impersonate Microsoft services and harvest user credentials.

The attackers leveraged malicious domains made to look like legitimate Microsoft login pages. These spoofed sites aimed to deceive employees and gain unauthorized access to cloud-based systems. Amazon disrupts Russian hackers by taking down these domains and cutting off their access to key resources. The operation posed a threat to both corporate and government systems reliant on Microsoft 365.

Midnight Blizzard has a long history of targeting Western technology platforms. The group’s latest campaign underscores the persistent threat of state-sponsored cyberattacks.

Read the full report at:
https://www.bleepingcomputer.com/news/security/amazon-disrupts-russian-apt29-hackers-targeting-microsoft-365/