| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Storm-1575 is a threat actor identified by Microsoft as being involved in phishing campaigns using the Dadsec platform. They utilize hundreds of Domain Generated Algorithm domains to host credential harvesting pages and target global organizations to steal Microsoft 365 credentials.
There are currently no families associated with this actor.
| 2023-12-18
⋅
Bridewell
⋅
Analysing a Widespread Microsoft 365 Credential Harvesting Campaign Storm-1575 |
| 2023-10-13
⋅
Twitter (@MsftSecIntel)
⋅
Tweet on Storm-1575 and Dadsec phishing platform Storm-1575 |