Feb 26, 04:34 AM

Chinese Botnet of 130,000 Devices Targets Microsoft 365 Accounts; CISA Adds Auto-Color and PolarEdge Vulnerabilities

A Chinese botnet has launched extensive cyberattacks against Microsoft 365 accounts, utilizing a method that bypasses multi-factor authentication (MFA). This massive botnet, reportedly composed of over 130,000 compromised devices, has been conducting large-scale password spraying attacks. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed the exploitation of critical vulnerabilities affecting Microsoft’s partner program website. Additionally, CISA has added vulnerabilities related to Microsoft Partner Center and Synacor Zimbra Collaboration Suite to its Known Exploited Vulnerabilities catalog, indicating active exploitation. In a related development, a new Linux malware named 'Auto-Color' is targeting universities and government organizations, employing advanced tactics to evade detection and grant hackers remote access to compromised systems. Another botnet, PolarEdge, is also exploiting vulnerabilities in Cisco, ASUS, QNAP, and Synology devices, with over 2,000 devices already compromised.

#Chinese #Microsoft #CISA #Microsoft Partner Center #Synacor Zimbra Collaboration Suite #Known Exploited Vulnerabilities #Linux #PolarEdge #Cisco #ASUS #QNAP #Synology

Written with ChatGPT (GPT-4o mini).

Sources

Additional media

Image #1 for story chinese-botnet-130000-devices-targets-microsoft-365-accounts-cisa-adds-auto-75a8b814

Image #2 for story chinese-botnet-130000-devices-targets-microsoft-365-accounts-cisa-adds-auto-75a8b814

Image #3 for story chinese-botnet-130000-devices-targets-microsoft-365-accounts-cisa-adds-auto-75a8b814

Chinese Botnet of 130,000 Devices Targets Microsoft 365 Accounts; CISA Adds Auto-Color and PolarEdge Vulnerabilities

Sources

Additional media

Similar Stories