Get Permission
Microsoft is warning users of its Azure cloud platform that hackers are using several living off the land attack techniques to evade security measures, escalate privileges and deploy cryptominers. The software giant released a threat detection and mitigation strategy for the platform.
Hackers are using Azure LoLBins, which refers to weaponizing preinstalled Windows or Linux binary tools designed for legitimate purposes within the Azure platform. Attackers are increasingly employing stealthier methods to avoid detection. Evidence for a variety of campaigns has been witnessed, Microsoft notes. The usage of LoLBins is frequently seen, mostly combined with fileless attacks, where attacker payloads surreptitiously persist within the memory of compromised processes and perform a wide range of malicious activities. Together with the use of legitimate LoLBins, attackers’ activities are more likely to remain undetected.