| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Storm-1152, a cybercriminal group, was recently taken down by Microsoft for illegally reselling Outlook accounts. They operated by creating approximately 750 million fraudulent Microsoft accounts and earned millions of dollars in illicit revenue. Storm-1152 also offered CAPTCHA-solving services and was connected to ransomware and extortion groups. Microsoft obtained a court order to seize their infrastructure and domains, disrupting their operations.
There are currently no families associated with this actor.
| 2023-12-29
⋅
Security Boulevard
⋅
Microsoft Storm-1152 Crackdown: Stopping Threat Actors Storm-1152 |
| 2023-12-18
⋅
Rewterz Information Security
⋅
Rewterz Threat Update – Microsoft Warns of Emerging Threat by Storm-0539 Behind Gift Card Frauds Storm-0539 Storm-1152 |
| 2023-12-13
⋅
Microsoft
⋅
Disrupting the gateway services to cybercrime Storm-1152 |