Iran-Linked “Password Spraying” Targets Municipal Response to Missile Strikes Check Point Research tracked an Iran-linked, three-stage password-spraying campaign against Microsoft 365 tenants that peaked on March 3, 13, and 23, 2026 and primarily targeted municipalities in Israel and the UAE. Attackers scanned via rotating Tor exit nodes, used Windscribe and NordVPN endpoints geolocated in Israel to bypass geo-fencing, and leveraged...

Iran-linked hackers launched three waves of password spraying attacks in March 2026 targeting Israeli and UAE municipalities, exploiting Microsoft 365 accounts via VPNs and Tor to steal sensitive emails. #GraySandstorm #Israel #PasswordSpray

Iranian Hackers Launch Coordinated Password Spray Attacks on Middle East The Iranian APT group Gray Sandstorm is suspected of conducting a large-scale password spray attack against Microsoft 365 accounts in Israel and the UAE to support kinetic military operations.

🇮🇷 Iranian APT Gray Sandstorm linked to password spray attacks against Israel & UAE. The campaign, targeting M365 accounts, appears coordinated with kinetic military strikes to aid in damage assessment. #APT #Iran #CyberWarfare #PasswordSpray

Suspected Iran-Nexus Password Spray Attack Targets Microsoft 365 Users in the UAE and Israel A possible Iran-Nexus password spray campaign targeted Microsoft 365 accounts across several Middle East municipalities.

Read more:
www.technadu.com/suspected-ir...
Do you think MFA alone is enough to stop these attacks? Share your thoughts below.
#CyberSecurity #Microsoft365 #CloudSecurity #PasswordSpray #ThreatIntelligence #Infosec

Targeted password-spray using DonPAPI-derived wordlists, delay+jitter controls, NetExec integration and secretsdump NT-hash comparison for authorized AD testing. #tool #passwordspray #ActiveDirectory https://bit.ly/3Lwv9eS

Microsoft 365: Hackers Abuse Pentesting Tool for Widespread Attack on 80,000 User Accounts

#CyberSecurity #Microsoft #Hacking #EntraID #Proofpoint #InfoSec #PasswordSpray #ThreatIntel #CloudSecurity #CyberAttack #DataBreach #Microsoft365

winbuzzer.com/2025/06/12/m...

Botnet targets Basic Auth in Microsoft 365 password spray attacks A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 (M365) accounts worldwide, attempting to confirm credentials.

A massive botnet of over 130,000 compromised devices is conducting password-spray attacks against Microsoft 365 accounts #CyberSecurity #Microsoft365 #Botnet #PasswordSpray #TechNews www.bleepingcomputer.com/news/securit...