Sep 27, 11:12 AM

SloppyLemming and Storm-0501 Hackers Exploit Cloudflare and Microsoft Services in Asia

The hacker group 'SloppyLemming' has been exploiting Cloudflare Service, specifically targeting government, law enforcement, and energy sectors in South & East Asia. Their primary attack methods include spear-phishing and credential harvesting. Cloudflare has issued warnings about these India-linked hackers. Additionally, Microsoft has identified the financially motivated cybercriminal group Storm-0501 as a significant threat. Storm-0501 has been exfiltrating data and deploying Embargo ransomware by moving laterally from on-premises to cloud environments. The group has exploited weak credentials and over-privileged accounts in these attacks.

#SloppyLemming #Cloudflare Service #Cloudflare #Microsoft #Storm #Embargo

Written with ChatGPT (GPT-4o).

Sources

Nicolas Krassas@Dinosn
1 year ago
Ransomware Gang Using Stolen MS Entra ID Creds To Bust Into Cloud https://t.co/qfMBDn2OPV
The Register@TheRegister
1 year ago
Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud https://t.co/D89Cwc4UEf
Nicolas Krassas@Dinosn
1 year ago
Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks https://t.co/dWDLEQeWvF

SloppyLemming and Storm-0501 Hackers Exploit Cloudflare and Microsoft Services in Asia

Sources

Additional media

Similar Stories