U.S. Markets close in 5 hrs 36 mins
  • S&P 500

    4,426.44
    -56.29 (-1.26%)
     
  • Dow 30

    34,493.98
    -221.41 (-0.64%)
     
  • Nasdaq

    13,864.84
    -289.18 (-2.04%)
     
  • Russell 2000

    2,004.09
    -19.94 (-0.99%)
     
  • Crude Oil

    84.06
    -1.49 (-1.74%)
     
  • Gold

    1,836.20
    -6.40 (-0.35%)
     
  • Silver

    24.43
    -0.28 (-1.14%)
     
  • EUR/USD

    1.1351
    +0.0033 (+0.2951%)
     
  • 10-Yr Bond

    1.7470
    -0.0860 (-4.69%)
     
  • Vix

    27.70
    +2.11 (+8.25%)
     
  • GBP/USD

    1.3547
    -0.0053 (-0.3888%)
     
  • USD/JPY

    113.6330
    -0.4670 (-0.4093%)
     
  • BTC-USD

    38,383.36
    -4,741.80 (-11.00%)
     
  • CMC Crypto 200

    902.22
    +659.55 (+271.78%)
     
  • FTSE 100

    7,472.46
    -112.55 (-1.48%)
     
  • Nikkei 225

    27,522.26
    -250.64 (-0.90%)
     

Microsoft Sees Growing Iranian Spying Threat On IT Sector

  • Oops!
    Something went wrong.
    Please try again later.
·1 min read
In this article:
  • Oops!
    Something went wrong.
    Please try again later.
  • MSFT
  • Microsoft Corp (NASDAQ: MSFT) has observed multiple Iranian threat actors targeting the IT services sector in attacks that aim to steal sign-in credentials belonging to downstream customer networks to enable further attacks.

  • The Microsoft Threat Intelligence Center (MSTIC) and Digital Security Unit (DSU) assess this as part of a broader spying objective to compromise organizations of interest to the Iranian regime.

  • As India and other nations rise as major IT services hubs, more nation-state actors follow the supply chain to target these providers’ public and private sector customers worldwide, matching nation-state interests.

  • Microsoft has issued over 1,600 notifications to over 40 IT companies in response to Iranian targeting, compared to 48 in 2020.

  • The focus of several Iranian threat groups on the IT sector notably spiked in the last six months.

  • Most of the targeting focuses on IT services companies based in India and several companies based in Israel and the United Arab Emirates.

  • The U.S. government, and counterparts in Australia and the U.K., warned that Iran-backed attackers have been exploiting Fortinet Inc (NASDAQ: FTNT) vulnerabilities since at least March and a Microsoft Exchange ProxyShell vulnerability since October, TechCrunch reported.

  • The attackers aimed to gain access to U.S. critical infrastructure organizations in the transport and public health sectors and organizations in Australia for follow-on operations like data exfiltration, extortion, and ransomware deployment.

  • Price Action: MSFT shares traded higher by 0.59% at $341.13 on the last check Thursday.

See more from Benzinga

© 2021 Benzinga.com. Benzinga does not provide investment advice. All rights reserved.