Microsoft removed 18 apps from its cloud computing platform that were being used by a hacking group as part of its command-and-control infrastructure to help launch phishing email attacks. Gadolinium, which is called APT40 and Leviathan by other security researchers, has been active since at least 2014 and has primarily targeted the U.S. and Western Europe. The hackers reportedly have ties to China, according to a 2019 report published by FireEye. Microsoft says it took proactive steps to prevent attackers from using our cloud infrastructure to execute their attacks.”]
Source: https://www.cuinfosecurity.com/microsoft-shutters-azure-apps-used-by-china-linked-hackers-a-15069