Researchers Uncover New Account Takeover Campaign Targeting Microsoft Entra ID

Cybersecurity researchers have discovered a new account takeover (ATO) campaign using the open-source penetration testing framework TeamFiltration to compromise Microsoft Entra ID (formerly Azure Active Directory) user accounts. This activity, named UNK_SneakyStrike by Proofpoint, has targeted over 80,000 user accounts across hundreds of cloud tenants of organizations following a recent increase.