An emerging threat actor likely supporting Iranian national interests has been behind a password spraying campaign targeting U.S., E.U., and Israeli defense technology companies. Microsoft is tracking the hacking crew under the moniker DEV-0343. The intrusions, which were first observed in late July 2021, are believed to have targeted more than 250 Office 365 tenants, fewer than 20 of which were successfully compromised following a password spray attack. The password spray attacks emulate Firefox and Google Chrome browsers and rely on a series of unique Tor proxy IP addresses.”]
Source: https://thehackernews.com/2021/10/microsoft-warns-of-iran-linked-hackers.html

