Microsoft Has Initiated Action Against Cybercrime Group 'Storm-1152' Selling Fraudulent Microsoft Goods.

American tech giant Microsoft The Digital Crimes Unit from Microsoft took decisive action against a Vietnam-based outfit known as Storm-1152, which was responsible for generating over 750 million bogus Outlook accounts and profiting millions by selling them to other cybercriminals online. cybercriminal According to Amy Hogan-Burney, General Manager of Microsoft’s Digital Crimes Unit, 'Storm-1152 operates illegal websites and social media outlets that deal in counterfeit Microsoft accounts and methods to circumvent identity verification processes across popular tech platforms.'

'These illicit offerings significantly lessen the time and effort required for criminals to engage in a range of online misconducts,' she noted. blog post .

This group employs automated Internet 'bots' to breach and manipulate Microsoft's security measures, misleading them into thinking they are legitimate users. They create Outlook email profiles under fictitious names, which are then sold to other cybercriminals for various online illicit activities, noted a Microsoft statement.

Microsoft successfully obtained a court order to confiscate Storm-1152's US-based infrastructure and dismantle the harmful websites that were negatively impacting Microsoft users. complaint to the court.

On December 7, 2023, Microsoft An investigation conducted by the Microsoft Threat Intelligence and the Arkose Cyber Threat Intelligence Research unit (ACTIR) identified the key players behind Storm-1152's operations: Duong Dinh Tu, Linh Van Nguyễn (commonly referred to as Nguyễn Van Linh), and Tai Van Nguyen, all hailing from Vietnam.

Their investigation revealed that these individuals not only developed the malicious websites but also created comprehensive tutorials including video guides and provided real-time chat support to those using their fraudulent services.

'Storm-1152 stands as a powerful adversary intent on generating profit by equipping its clients with the means to execute sophisticated attacks. What sets the group apart is that they operate their business model openly rather than hiding within the dark web. They function as if they're a legitimate entity, offering guidance and customer service for their offerings. Essentially, Storm-1152 served as an unguarded portal to severe fraudulent activity,' explained Kevin Gosschalk, founder and CEO of Arkose Labs.

Rising Demand for Fake Accounts Among Cybercriminals

Cybercriminals increasingly require fraudulent accounts to facilitate their largely automated operations. With firms becoming capable of swiftly detecting and eliminating fake accounts, the demand for a greater volume of these accounts has escalated to outsmart these countermeasures.

Rather than investing time into creating thousands of phony accounts, criminals find it far easier to simply purchase them from groups like Storm-1152. criminal activities Furthermore, Microsoft's Threat Intelligence revealed several cyber crime networks involved in activities like ransomware, data breaches, and extortion, frequently utilizing accounts sourced from Storm-1152. For instance, a group named Octo Tempest, also known as Scattered Spider, was linked to acquiring fraudulent Microsoft accounts through Storm-1152.

Octo Tempest operates with a financial motive, employing extensive social engineering tactics to infiltrate global organizations for the purpose of financial extortion.

Microsoft continues to closely monitor other threat entities linked to ransomware and extortion, such as Storm-0252 and Storm-0455, who have similarly acquired fake accounts from Storm-1152 for their nefarious actions.

Additionally, the tech giant is leveraging threat intelligence from cybersecurity and bot management provider Arkose Labs to combat cybercriminal activities. cybercrime Microsoft is collaborating with Arkose Labs to implement a CAPTCHA defense mechanism requiring every potential user looking to create a Microsoft account to confirm their humanity (as opposed to being a bot) by successfully completing various challenges.

Please be aware that the information presented on this page should not be construed as legal, tax, investment, financial, or any other form of guidance. Always make sure to invest only what you can afford to lose and consider seeking independent financial advice if you have concerns. For more information, we recommend reviewing the terms and conditions as well as the help sections provided by the issuer or advertiser. MetaversePost is dedicated to delivering accurate, impartial news, but do keep in mind that market dynamics can change unexpectedly.

Kumar is a seasoned tech journalist with a focus on the dynamic intersections of AI/ML, marketing technology, and innovative areas like cryptocurrency, blockchain, and NFTs. With over three years in the field, Kumar has built a solid reputation for crafting captivating stories, conducting informed interviews, and providing thorough insights. Kumar's strengths lie in creating impactful content, such as articles, reports, and research studies for leading industry outlets. With a unique blend of technical expertise and narrative skills, Kumar excels at making complex technological concepts accessible and engaging for a wide range of readers.

Enso, LayerZero, and Stargate Join Forces for One of Ethereum's Largest Liquidity Transfers to Unichain.