Chinese threat actors remained undetected in Microsoft 365 tenants for 18 months, exploiting a Managed Service Provider as a base for supply chain attack scenarios.
JDY is not a classical DDoS botnet, but rather an industrialized reconnaissance infrastructure that abuses edge devices as distributed scanners to identify targets before exploitation.
Cybercriminals increasingly employ professionalized automated standard methods and are becoming faster at exploiting vulnerabilities, while phishing and invisible attacks using legitimate tools are becoming the norm.
