>The activity we have observed has been attributed to a threat group that Microsoft tracks as DEV-0537, also known as LAPSUS$
i guess nothing leaves redmond before getting hit with the marketing sugar stick.
>Unlike most activity groups that stay under the radar, DEV-0537 doesn’t seem to cover its tracks.
yes, its almost as though the pending narrative of the insidious black hat hacker we're trying to spin is proving difficult from the get go.
>Microsoft also found instances where the group successfully gained access to target organizations through recruited employees
so the downside to "bullshit jobs" is they become a threat vector. the countermeasure is to pay more and offer better benefits or...do what Okta did and just ignore the whole thing while players like Cloudflare try to stack the fallout squarely on you, and players like Microsoft try to make a buck off a crisis you cant handle.
i guess nothing leaves redmond before getting hit with the marketing sugar stick.
>Unlike most activity groups that stay under the radar, DEV-0537 doesn’t seem to cover its tracks.
yes, its almost as though the pending narrative of the insidious black hat hacker we're trying to spin is proving difficult from the get go.
>Microsoft also found instances where the group successfully gained access to target organizations through recruited employees
so the downside to "bullshit jobs" is they become a threat vector. the countermeasure is to pay more and offer better benefits or...do what Okta did and just ignore the whole thing while players like Cloudflare try to stack the fallout squarely on you, and players like Microsoft try to make a buck off a crisis you cant handle.