Free auditing tool can spot four attack tactics used by the SolarWinds hackers to move laterally within the Office 365 cloud environment, FireEye says. Researchers believe Sunburst is used as part of a campaign to help hijack Microsoft Office 365 applications to read victims’ emails, send emails from compromised accounts and access users’ calendars. U.S. intelligence agencies say the attack appears to be a Russian-backed espionage operation. An estimated 18,000 organizations, including government agencies, tech firms and other organizations, downloaded infected software.”]
Source: https://www.bankinfosecurity.com/free-auditing-tool-helps-detect-solarwinds-hackers-malware-a-15808