After basically the whole #Microsoft #Azure cloud was hacked (see list of related sources on https://karl-voit.at/cloud/ ), the first follow-up incidents went public caused by missing containment actions:
60,000 emails were stolen from 10 #USA #StateDepartment accounts
https://www.reuters.com/world/us/chinese-hackers-stole-60000-emails-us-state-department-microsoft-hack-senate-2023-09-27/
If you didn't understand until now: basically EVERYTHING at Microsoft got hacked and Microsoft can't (or won't) get rid of the intruders. Everything authenticated by Microsoft is tainted. Even #Windows auth.
This guy comes across as a bit of a nut. I don’t doubt the situations he lists, but saying things like “the whole of Azure was hacked” when it specifically was that an engineer’s auth cert was captured with malware to access M365 emails just screams panic merchant. Reading the posts they’re all #Cloud #Armageddon #2023 #hashtag
This guy comes across as a bit of a nut. I don’t doubt the situations he lists, but saying things like “the whole of Azure was hacked” when it specifically was that an engineer’s auth cert was captured with malware to access M365 emails just screams panic merchant. Reading the posts they’re all #Cloud #Armageddon #2023 #hashtag