In late 2023, Microsoft faced a sophisticated cyber attack by Nobelium, a group linked to Russian intelligence. This incident is notable for its use of password spraying and exploitation of weaknesses in Microsoft's Entra ID (formerly known as Azure Active Directory) settings.
Attack Vector and Methodology
1. Password