Microsoft confirms June Outlook and OneDrive outages were caused by DDoS attacks2023-06-19 18:30 by DanielaTags: Microsoft, DDoS, Outlook, OneDrive
Earlier this month, a group known as Anonymous Sudan took credit for a service outage that disrupted access to Outlook, OneDrive and a handful of other Microsoft online services. After initially sharing little information about the incident, the company confirmed late Friday it had been the target of a series of distributed denial-of-service attacks. In a blog post spotted by the Associated Press, Microsoft said the attacks "temporarily impacted" the availability of some services, adding they were primarily designed to generate "publicity" for a threat actor the company has dubbed Storm-1359. Under Microsoft's threat actor naming convention, Storm is a temporary designator the company employs for groups whose affiliation it hasn't definitively established yet. The company also disclosed details about the attackers' tactics, techniques, and procedures (TTPs). "Storm-1359 has access to a collection of botnets and tools that could enable the threat actor to launch DDoS attacks from multiple cloud services and open proxy infrastructures," the company revealed, and noted that Storm-1359 “appears to be focused on disruption and publicity." The group has been known to use several attack techniques such as HTTP(S) flood, cache bypass and Slowloris. Beyond that, no in-depth detail was given, but Microsoft did confirm no customer data was accessed of compromised. It also took the opportunity to recommend using Azure Web Application Firewall (WAF) if organizations want to protect themselves from similar Layer 7 attacks. Read more -here-
Post your review/comments
rate:
avg:
|