Obsidian, a cybersecurity firm, has reported a specific ransomware attack on Sharepoint Online (Microsoft 365) through an unconventional method using a Microsoft Global SaaS admin account instead of the typically compromised endpoint.
Following the breach, the victim sought assistance from Obsidian’s product and research team to gain deeper insights into the attack. While Obsidian did not reveal the victim’s identity in their blog post about the incident, they suspect that the perpetrator was the renowned group called 0mega.
Read More: SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.