Midnight Blizzard Exploiting Legacy OAuth for Lateral Movement

Threat Level – Red | Vulnerability Report
Download PDF

Midnight Blizzard exploited a legacy test OAuth application with elevated access due to a common password and lack of multi-factor authentication (MFA). The attackers leveraged this access to move laterally within Microsoft’s network, potentially exfiltrating data and gaining broader control.

Threat Level – Red | Attack Report

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox