How Darktrace’s AI caught two Microsoft 365 account takeovers | Darktrace Blog
Tags
country: France United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Model Models Cloud Services - T1021.007 Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Email Account - T1087.003 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Vulnerability Scanning - T1595.002
Show in Graph
Common Information
Type Value
UUID 37e5c89e-2f34-46a7-a73b-cc140489913e
Fingerprint e79108930823de4b
Analysis status DONE
Considered CTI value 0
Text language
Published June 7, 2020, midnight
Added to db Aug. 13, 2023, 4:48 p.m.
Last updated Oct. 16, 2024, 2:03 a.m.
Headline How Darktrace’s AI caught two Microsoft 365 account takeovers
Title How Darktrace’s AI caught two Microsoft 365 account takeovers | Darktrace Blog
Detected Hints/Tags/Attributes 95/3/12
Source URLs
Redirection Url
Details Source https://darktrace.com/blog/how-darktraces-ai-caught-two-microsoft-365-account-takeovers
URL Provider
Details Provider Source level domain
Details darktrace.com darktrace.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 101 https://de.darktrace.com/blog/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 76 
ipfs.io
Details Domain 58 
image.thum.io
Details Domain 58 
logo.clearbit.com
Details Domain 58 
mku.ipfs.dweb.link
Details Domain 58 
filebase.com
Details File 58 
ob.html
Details File 58 
atob.html
Details File 58 
cpmk.htm
Details Url 58 
https://ipfs.io/ipfs/qmfddxlwoliqfurx6duzcshxvbp1znm21h5jxgs1ffnxtp?filename=at
Details Url 58 
https://ipfs.io/ipfs/qmfddxlwoli
Details Url 58 
https://filebase.com/blog/ipfs-content-addressing-explained
Details Url 58 
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/the-attack-of-the-chameleon-phishing-page