Account Takeover

Attack Stories

- Midnight Blizzard infiltrated Microsoft's Exchange environment, leading to the compromise of top executives' mailboxes. - The attackers used password spraying, obfuscation through proxy infrastructure, and exploitation of OAuth applications to gain access and exfiltrate email communications. - To protect against similar attacks, organizations should enable MFA, actively monitor their cloud email platforms, and consider implementing an AI-powered solution.

B 1 30 23 Microsoft ATO

E03 C83 N442 J U047 UPX5 KLL 1305a10bd70a 512

Ryan Schwartz

Homepage

Breadcrumbs

Abnormal AI provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

Abnormal AI

A recent nation-state actor attack by the Russian-backed threat group Midnight Blizzard infiltrated Microsoft. Discover how Abnormal can protect you from account takeovers in real time.

Executive Email Account Takeovers in the News: Unpacking Midnight Blizzard

A recent nation-state actor attack by the Russian-backed threat group Midnight Blizzard infiltrated Microsoft. Discover how Abnormal can protect you from…

description

actor, attack, russian-backed, threat, group, midnight, blizzard, protect, account, takeovers, nation-state, infiltrated, abnormal, real, recent

keywords

https://images.abnormalsecurity.com/production/images/blog/LI_1.30.23_MicrosoftATO.png?w=1200&h=627&auto=compress%2Cformat&fit=crop&dm=1706658279&s=7c2c49a848850d7cae8c06c982caa258

Executive Email Account Takeovers in the News: Unpacking Midnight…

https://abnormal.ai/blog/executive-email-account-takeovers-midnight-blizzard

referrer

robots

twitter:card

twitter:creator

twitter:description

https://images.abnormalsecurity.com/production/images/blog/T_1.30.23_MicrosoftATO.png?w=1012&h=506&auto=compress%2Cformat&fit=crop&dm=1706658282&s=b357a63260e05c7d2ec8616efd7eece8

twitter:image

twitter:image:alt

twitter:image:height

twitter:image:width

twitter:site

twitter:title

{"title":{"title":"Executive Email Account Takeovers in the News:… | Abnormal AI"}}

Email Platform Attacks

8 Threats Redefining CES Cover pptx

Jaroslav Kalfar Photo

Jaroslav Kalfar

Discover the 8 threats reshaping cloud email security in 2025 and the AI-native capabilities SOC teams need to stay ahead of attackers.

8 Threats Redefining Cloud Email Security in 2025

Five 2025 Trends Every Banking

L Blog Author

Explore five trends shaping email security for technical teams in 2025 and practical steps to help you stay ahead.

5 Critical Insights Driving Transformation in the Banking Sector

Threat Intel

B Compromised Police Government Accounts

Cybercriminals are selling active .gov and .police accounts, enabling identity takeover, fraudulent subpoenas, and access to sensitive law enforcement systems.

The Dark Web Economy for Compromised Government and Police Email Accounts

Data & Trends

IBM 2025 Data Breach Cover

Phishing and vendor email compromise are now among the costliest breach vectors, as the average U.S. data breach surpasses $10 million.

IBM Data Breach Report 2025: The Soaring Cost of Email Attacks

Engineering

Inside the Fault Tolerant Scoring Cover

Edward Li

Albert Liu

How Abnormal engineered a resilient, self-healing AI detection platform that maintains high precision even when dependencies fail.

Abnormal AI Innovation: Inside the Fault-Tolerant Scoring Engine

CISO Insights

B Cyber Savvy BSI

Emily Burns

Discover how BSI CISO Mike Pitman is advancing cyber resilience in the face of AI threats, zero-day vulnerabilities, and budget constraints—while supporting a sustainable future for security.

Cyber Savvy: Advancing Cyber Resilience for a Sustainable Future With BSI’s Mike Pitman

Demo

Schedule a Demo

Product

Black Hat Product Launch Cover

Person Evan Reiser

Evan Reiser

Abnormal AI announces Security Posture Management for Microsoft 365, international expansion, and Email Security product innovations at Black Hat 2025.

Introducing Security Posture Management for Microsoft 365 (and Six Powerful Platform Enhancements)

B 1500x1500 MKT889c Forrester Wave

Author Lane Billings

Lane Billings

Abnormal AI received the highest scores possible in the Innovation and Roadmap criteria, the top score in the Strategy category, and above-average customer feedback.

Abnormal AI Named a Leader in The Forrester Wave™: Email, Messaging, And Collaboration Security Solutions, Q2 2025

Company & Culture

Gartner Peer Insights Customers Choice 2025 Cover

Alaina Kretchmer

Abnormal AI has been named a 2025 Gartner® Peer Insights™ Customers’ Choice for Email Security Platforms, based entirely on feedback from IT and security professionals. Learn how real users rated Abnormal across key criteria including deployment, support, and product capabilities.

Abnormal AI Recognized as a Customers’ Choice in 2025 Gartner® Peer Insights™ Voice of the Customer for Email Security Platforms

B 1500x1500 BLOG AI Phishing Coach Product Announcement

Discover how Abnormal transforms security training with personalized phishing simulations, real-time coaching, and fully autonomous program management.

Introducing AI Phishing Coach: Personalized, Autonomous Security Awareness Training

Vendor Email Compromise

B Vendor Email Compromise Case Study Blog

Author Callie Hinman

Callie Baron

Author Elizbeth Swantek

Elizabeth Swantek

See how a real vendor email compromise attack fooled multiple employees. Learn why VEC succeeds and how AI makes these threats more dangerous.

Thread Hijacked: Breaking Down a Real Vendor Email Compromise Attack

Email Subscribe

Subscribe to our newsletter to receive updates on the latest attacks and new trends in the email threat landscape.

Abnormal Blog

Named a 2025 Gartner® Peer Insights™ Customers’ Choice for Email Security

Executive Email Account Takeovers in the News: Unpacking Midnight Blizzard

Key Takeaways

Get the Latest Email Security Insights

See How Abnormal AI Protects Humans