With the help of cryptojacking
Microsoft has revealed details of the Storm-1977 cyber group’s attacks on education sector cloud systems. The hackers used a “password spraying” method – a mass login attempt using popular password combinations to gain access to accounts.
/imgs/2025/04/27/13/6799441/4735c688d39db42cfe638cb4120e2987799731e7.jpeg)
The main tool used in the attacks was AzureChecker.exe, a program that allowed the attackers to find vulnerable Microsoft Azure cloud resources. After hacking the accounts, the hackers created more than 200 virtual containers for cryptocurrency mining. Cryptojacking is the hidden installation of cryptocurrency mining programs on other people’s devices, which slows them down and increases their electricity bills.