ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cloud

Azure CLI password spraying compromises dozens of Microsoft accounts

Source headline: Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 1 hour ago

Intelligence Summary

Security researchers report a large password-spraying campaign targeting Azure CLI authentication. The activity attempted logins against at least 78 Microsoft accounts using over 81 million tries. The traffic was traced to an IPv6 range associated with LSHIY LLC. If successful, the attackers could gain access to cloud resources and perform further actions under compromised identities. Azure CLI users and administrators should review authentication logs, enforce strong MFA, and watch for suspicious login patterns from abnormal IP ranges.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#azure-cli #cloud-authentication #credential-attacks #microsoft-accounts #password-spraying
Original reporting The Hacker News Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts
Open original source