Subj : Microsoft seizes criminal websites used to make millions of fake
To   : All
From : TechnologyDaily
Date : Thu Dec 14 2023 14:00:05

Microsoft seizes criminal websites used to make millions of fake Windows 
accounts

Date:
Thu, 14 Dec 2023 13:56:27 +0000

Description:
Three individuals referred to US law enforcement for selling 750 million 
fraudulent Microsoft accounts.

FULL STORY
======================================================================

Microsoft has revealed plans to take down the number one seller of fraudulent 
accounts for its online platforms used for scams and online fraud. 

Redmond says that the seller has been linked to a group its been tracking 
called Storm-1152. The Storm prefix indicates that the group is new or in 
development, and hasnt been observed much previously. 

In a message of warning, Microsofts General Manager for Cybersecurity Policy 
& Protection, Amy Hogan-Burney, said: We are watching, taking notice and will 
act to protect our customers. Microsoft goes after fraudulent account creator 

The group promotes fraudulent Microsoft accounts and tools for bypassing 
identity verification software across other platforms on its websites and 
social media pages. The offerings are designed to reduce the amount of time 
and effort that criminals need to spend setting up their attack vector. 

As many as 750 million fraudulent Microsoft accounts have been created by 
Storm-1152 to date, totalling millions of dollars in sales. 

Microsoft says that the second-stage criminals  the ones that buy dodgy 
accounts from Storm-1152  go on to carry out phishing, spamming, ransomware, 
and other fraud and abuse attacks. 

The company even observed Octo Tempest, a well-documented financially 
motivated group, using Storm-1152s fraudulent accounts in their social 
engineering campaigns. 

On December 7, Microsoft was granted a court order from the Southern District 
of New York to seize infrastructure used by Storm-1152. The action took down 
the groups website and social media pages, disrupting its service to illegal 
customers. 

Microsoft reports using detection, analysis, telemetry, undercover test 
purchases, and reverse engineering to pinpoint the US-hosted malicious 
infrastructure. Together with Arkose Cyber Threat Intelligence, three 
Vietnamese individuals have been tied to the group, and a criminal referral 
has been submitted to US law enforcement. 

Though Storm-1152 has been taken down, or at least hugely impacted, its 
likely that other groups are using, and will use, similar techniques. For 
Microsoft, a large part of the battle will forever be keeping on top of 
emerging threats. More from TechRadar Pro Microsoft has a new chief security 
officer - what could this mean for Windows security? Reckon youve downloaded 
something dodgy? Heres the best malware removal Boost your cybersecurity with 
the best firewalls and best endpoint protection



======================================================================
Link to news story:
https://www.techradar.com/pro/security/microsoft-seizes-criminal-websites-used
-to-make-millions-of-fake-windows-accounts


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.