The software giant says the attacks in recent months on six large pharmaceutical companies and one clinical research firm - which it did not identify - were blocked. The attacks were waged by Strontium, a threat actor in Russia, and two hacker groups in North Korea - Zinc and Cerium, the company says.
"Strontium continues to use password spray and brute force login attempts to steal login credentials. These are attacks that aim to break into people's accounts using thousands or millions of rapid attempts," according to a blog post by Tom Burt, Microsoft's corporate vice president of customer security and trust.
"Zinc has primarily used spear-phishing lures for credential theft, sending messages with fabricated job descriptions pretending to be recruiters," the blog notes. "Cerium engaged in spear-phishing email lures using COVID-19 themes while masquerading as World Health Organization representatives."
- Mayo Clinic sued over breach of patient health records
- Designing Telehealth For Seniors Means Designing For All
- Vodafone releases report on how 5G and IoT technology can transform healthcare
- Wearables Data for COVID-19 Detection
- Making Telemedicine more Human
The filing follows Mayo Clinic's announcement that a former employee had inappropriately accessed the information of more than 1,600 patients. Patients filed class-action complaints against the Mayo …