Friendly forums for passionate Dems!
More than 94 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Issue Forums»Foreign Affairs»Iran targets M365 account...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Foreign Affairs

Related: About this forum

littlemissmartypants

(33,633 posts) Wed Apr 1, 2026, 04:15 PM 12 hrs ago

Iran targets M365 accounts with password-spraying attacks

Tue 31 Mar 2026 // 19:09 UTC

Suspected Iran-linked threat actors are conducting password-spraying attacks against hundreds of organizations, primarily Middle Eastern municipalities, in campaigns that security researchers believe may have been aimed at supporting bomb-damage assessment following missile strikes.

Tel Aviv-based Check Point Research on Tuesday said that the attackers used multiple source IP addresses to target numerous Microsoft 365 accounts, affecting more than 300 organizations in Israel and more than 25 in the United Arab Emirates. While most of the password spraying hit these two Middle Eastern countries, the researchers tracked similar activity from the same attacker against a "limited number" of targets in the US, Europe, and Saudi Arabia.

The attacks happened in three waves - March 3, March 13, and March 23 - and Iran-linked groups, including the Islamic Revolutionary Guard Corps' Peach Sandstorm and Gray Sandstorm, are known to use this method to gain initial access to victims' Microsoft 365 environments and steal sensitive information.

While Israel's municipal sector bore the brunt of the password-spraying attacks, other industries, including technology (63 attempts), transportation and logistics (32), healthcare (28), and manufacturing (28), were also targeted.
...
https://www.theregister.com/2026/03/31/iran_password_spraying_m365/?utm_source=dlvr.it&utm_medium=bluesky

7 replies, 435 views
7 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Iran targets M365 accounts with password-spraying attacks (Original Post) littlemissmartypants 12 hrs ago OP
Had to look it up GreatGazoo 12 hrs ago #1
If you're that stupid, you should join trump's administration. Wonder Why 10 hrs ago #2
And how stupid is that? And who's being stupid? I don't understand your reply, Wonder Why. littlemissmartypants 8 hrs ago #3
People who have "the same commonly used or likely password". Wonder Why 2 hrs ago #4
Excellent clarification. I think it leaves a much deeper impression. TY❤️ littlemissmartypants 2 hrs ago #5
A better one might be an apartment complex where every apartment has a digital lock that requires you have a 6 digital c Wonder Why 1 hr ago #6
I think that they are both very good, WW. They each may appeal differently to different individual groups of people. ... littlemissmartypants 1 hr ago #7

GreatGazoo

(4,619 posts)
1. Had to look it up
Reply to littlemissmartypants (Original post)
Wed Apr 1, 2026, 04:59 PM
12 hrs ago

password-spraying is trying the same commonly used or likely password on every known account. This avoids lock outs because each account is tried only once.

littlemissmartypants

(33,633 posts)
3. And how stupid is that? And who's being stupid? I don't understand your reply, Wonder Why.
Reply to Wonder Why (Reply #2)
Wed Apr 1, 2026, 08:27 PM
8 hrs ago

Please elaborate. Thank you. ❤️

Wonder Why

(7,031 posts)
4. People who have "the same commonly used or likely password".
Reply to littlemissmartypants (Reply #3)
Thu Apr 2, 2026, 02:57 AM
2 hrs ago

Instead of hitting one account with multiple attempts to try different passwords to crack it, which would cause the account to be locked because of multiple failures, they try one common password like the word "password" on zillions of different accounts to find the idiots that were that stupid. Such people are just begging to get hacked.

You'd be amazed at the number of people that just use successive keys (qwerty) on keyboard or Password123 which has upper/lower case and numbers but is all too common e.g.

When you have an account that is open to the internet, anyone can try a simple password on it and if 1 billion people have a Microsoft 365, one try on each of those billion by a computer program, is bound to find the idiots in no time at all.

Wonder Why

(7,031 posts)
6. A better one might be an apartment complex where every apartment has a digital lock that requires you have a 6 digital c
Reply to littlemissmartypants (Reply #5)
Thu Apr 2, 2026, 03:11 AM
1 hr ago

Go to each successively and try 123456 and see how many doors that it opens. You would be amazed. Trying 3 failed codes on one door might set off an alarm but one "mistake" on every door will never be noticed.

littlemissmartypants

(33,633 posts)
7. I think that they are both very good, WW. They each may appeal differently to different individual groups of people. ...
Reply to Wonder Why (Reply #6)
Thu Apr 2, 2026, 04:01 AM
1 hr ago

The expanded examples make the descriptions available to an expanded audience.

The article is geared towards a very specific group, and your explanations make it meaningful to many people who otherwise would not see the personal relevance.

Thanks again! ❤️

Reply to this discussion
Latest Discussions»Issue Forums»Foreign Affairs»Iran targets M365 account...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2026 Democratic Underground, LLC. Thank you for visiting.