The recent breach into Microsoft’s network and its top executives’ email by hackers, traced back to Russia-state group Midnight Blizzard, was facilitated through an outdated test account with administrative privileges. The hackers employed a technique called “password spraying” to exploit a weak credential and infiltrate the unprotected account. They compounded this access by creating a malicious app, granting it rights to every email on Microsoft’s Office 365 service.

United States Charges Developer of LockBit Ransomware Group
Rostislav Panev, a 51-year-old dual Russian-Israeli national, has been extradited to the U.S. for his role as a developer in the LockBit ransomware group. Arrested