Risky Business Soap Box: A deep dive on how Russia's SVR is hacking Microsoft 365 tenants
Feb 18, 2024
Cybersecurity expert Andy Robbins from SpecterOps discusses Russia's SVR hacking Microsoft 365 tenants. Topics include Entra ID security, detecting attack paths, managing permissions, hacking tactics for email inboxes, and the importance of permissions auditing in Azure environments.
Chapters
Transcript
Episode notes
1 2 3 4 5 6
Introduction
00:00 • 2min
Cyberattack on Microsoft 365 Tenant: Adding New Credentials
02:05 • 14min
Managing Permissions in Microsoft 365 Ecosystem
16:21 • 8min
Discussion on Hacking Tactics to Access Microsoft 365 Email Inboxes
24:03 • 2min
Securing and Managing Microsoft 365 Permissions
26:12 • 7min
Navigating Permissions Auditing in Azure Environments
33:14 • 6min