Storm-1977 hackers attack educational clouds

ByTrust Tech USA

With the help of cryptojacking

Microsoft has revealed details of the Storm-1977 cyber group’s attacks on education sector cloud systems. The hackers used a “password spraying” method – a mass login attempt using popular password combinations to gain access to accounts.
Storm-1977 hackers attack educational clouds
© Ferra.ru

The main tool used in the attacks was AzureChecker.exe, a program that allowed the attackers to find vulnerable Microsoft Azure cloud resources. After hacking the accounts, the hackers created more than 200 virtual containers for cryptocurrency mining. Cryptojacking is the hidden installation of cryptocurrency mining programs on other people’s devices, which slows them down and increases their electricity bills.

The attacks began last year and mostly affected US educational institutions, where cloud technology is widely used for data storage and teaching. The hackers also took over guest accounts, allowing them to remain undetected. Microsoft has already strengthened security measures, including two-factor authentication, and is urging institutions to update passwords and monitor for suspicious activity.

Source: thehackernews

Similar Posts