Hacking News Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover

Hacking News Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover (/showthread.php?tid=5353)

Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover - The Hacker News - 05-17-2023

Threat Group UNC3944 Abusing Azure Serial Console for Total VM Takeover

A financially motivated cyber actor has been observed abusing Microsoft Azure Serial Console on virtual machines (VMs) to install third-party remote management tools within compromised environments.
Google-owned Mandiant attributed the activity to a threat group it tracks under the name UNC3944, which is also known as Roasted 0ktapus and Scattered Spider.
"This method of attack was unique in

https://thehackernews.com/2023/05/threat-group-unc3944-abusing-azure.html