Microsoft’s threat intelligence blog warns organizations about Storm-0501’s evolving tactics, targeting hybrid cloud environments. Active since 2021, the group gains initial access to on-prem environments before pivoting to the cloud, using stolen credentials for persistent access. Recently deploying Embargo’s ransomware, Storm-0501 exploits over-privileged accounts and often implants backdoors, posing significant risks to cloud security.

What to look out for at RSAC Conference 2025
At the upcoming RSA Conference, the focus will be on how AI can transform security. However, traditional security threats will also be discussed alongside the