Edward Kiledjian's Threat Intel

Amazon blocks APT29 campaign targeting Microsoft device code authentication

Amazon disrupted a watering hole campaign by APT29, a Russia-linked cyber espionage group, that targeted Microsoft device code authentication. The campaign used compromised websites to redirect visitors to malicious infrastructure, employing tactics like obfuscated JavaScript and server-side redirects.