Connect with us

Cyber Crime Legal

Microsoft Sues Hackers for Exploiting AI Services with Stolen Azure Credentials

Cyber Crime

Cyber Fraud Ring Busted: 13 Agents Arrested for SIM Card Scam in Chhattisgarh

Cyber Crime

Cyber Fraudster Posing Under New DP Scam Dupes Mumbai Firm of Rs 4.4 Crore

Cyber Crime

BlackBasta Ransomware Gang's Internal Chat Logs Leaked, Revealing Internal Strife and Disbanding

Cyber Crime

Agra Woman Duped of Rs 13.42 Lakh in Shocking ‘Digital Arrest’ Scam

Cyber Crime

Honey Singh Concert Controversy: Zomato Faces Cyber Cell Investigation Over Ticketing Issues

Cyber Crime

Chinese Hackers Target US Telecom Giants in Long-Term Espionage Campaign

Cyber Crime

Meet the Cyber Forensics Champions: Winners of the India’s Biggest Digital Hackathon

Cyber Crime

Join Webinar on “Online Child Safety: Threats & Protection”

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [21.02.2025]: Click here to Know More

Cyber Crime

India Rescues 53 Youth from Cyber Slavery in Laos’ Scam Hub

Cyber Crime

DoT Directs Social Media Platforms To Remove Caller ID Spoofing Apps Amid Rising Cyber Fraud Concerns

Cyber Crime

Private Videos of Women Patients at Rajkot Hospital Leaked Online, Sparking Outrage

Cyber Crime

Interpol Issues Red Notice Against Libya-Based IS Operative from Maharashtra

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [20.02.2025]: Click here to Know More

Cyber Crime

NPCI Warns: Fraudsters Using Call Merging to Steal OTPs – How to Stay Safe

Cyber Crime

Cognizant Alleges Infosys 'Caught Red-Handed' in Trade Secret Misuse

Cyber Crime

Kaveri 2.0 Portal Hit by Disruptions in Karnataka: Possible DDoS Attack Raises Concerns

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [19.02.2025]: Click here to Know More

Cyber Crime

Massive Rs 870 Crore Ponzi Scam Shocks Telangana: Thousands Duped, 2 Arrested

Cyber Crime

West Bengal Police Cracks Down on Cyber Fraud Under 'Operation Cyber Shakti'

Cyber Crime

Cyberabad EOW Arrests Two in Rs 850 Crore Falcon Invoice Ponzi Scheme

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [18.02.2025]: Click here to Know More

Cyber Crime

Bengaluru’s Developers Faces Rs 150 Crore Loss After Data Vanishes from AWS

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [17.02.2025]: Click here to Know More

Cyber Crime Economic Fraud

Delhi Cyber Fraudster Arrested for Running ‘Like & Share’ Scam Across 23 States

Cyber Crime

FutureCrime Summit 2025 Kicks Off Feb 13 at 9 AM To Fight Against Cybercrime

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [11.02.2025]: Click here to Know More

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [09.02.2025]: Click here to Know More

Cyber Crime

My Experience With Cyber Crime And The Struggle For Justice - Air Commodore(Retd)

Cyber Crime

IT Professionals Under Investigation for Rs 110 Crore Fake Donation Scam

Cyber Crime

Cybercriminal ‘Emirking’ Claims to Have Stolen 20 Million OpenAI User Credentials

Cyber Crime

Hewlett Packard Notifies Employees of Data Breach by Russian Hackers

Cyber Crime

Zero-Click Spyware: Your Phone Can Be Hacked Without You Clicking a Malicious Link.

Cyber Crime Policy Watch

RBI Launches Secure Internet Domain ‘bank.in’ to Shield Indian Banks from Cyber Fraud

Cyber Crime

Europol Cracks Down on International Child Exploitation Network “The Com”

Cyber Crime

Infostealers Target Indian Bank Users to Steal Aadhaar, PAN, ATM, and Credit Card PINs

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [07.02.2025]: Click here to Know More

Cyber Crime

Aviation Industry Under Cyberattack: ACAO Breach Exposes Sensitive Data, Resecurity Investigation Reveals

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [05.02.2025]: Click here to Know More

Cyber Crime

Cyber Crime Wing, WB Busts International Syndicate Scamming US Citizens via Fake Microsoft Tech Support

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [04.02.2025]: Click here to Know More

Cyber Crime

Pegasus 2.0? Israeli Firm Paragon’s Zero-Click Spyware Targets Journalists!

Cyber Crime

Global Cybercrime Industry Expands Rapidly, Annual Turnover Reaches Billions; Cases Surge Multifold

Cyber Crime

DK Boss: The Kingpin of Jamtara’s Cyber Underworld

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [03.02.2025]: Click here to Know More

Cyber Crime

FBI Strikes ‘The Manipulaters’ in Major Cyber Crackdown, 17 Million Americans Affected

Cyber Crime Trending

Union Budget 2025 Boosts Cybersecurity Funding to Rs 1,900 Crore to Tackle Digital Frauds

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [02.02.2025]: Click here to Know More

Cyber Crime

Top 10 Daily Cybercrime Brief by FCRF [01.02.2025]: Click here to Know More

Cyber Crime

A Tailor, A Banker & A Tax Consultant – How They Ran a Rs 52.9 Lakh Credit Card Scam

Cyber Crime

Global Cybercrime Forums Cracked and Nulled Shut Down in International Sting Operation

Cyber Crime

AI-Powered Cyber Threats: Hackers Exploit Google’s Gemini

Cyber Crime

Private Employee Hit by Rs 7 Crore Embezzlement to Online Betting

Cyber Crime

500 SIMs Illegally Sold for Cyber Crimes; DoT Uncovers Fraud

Cyber Crime

Hackers Hijack WordPress Sites to Spread Malware on Windows & Mac

Cyber Crime

Tata Technologies Battles Ransomware Attack – Full Details Inside

Cyber Crime

Microsoft Sues Hackers for Exploiting AI Services with Stolen Azure Credentials

Published

1 month ago

on

Microsoft has launched a legal offensive against a foreign-based hacking group accused of operating a “hacking-as-a-service” scheme targeting its generative AI platforms.

The group reportedly bypassed safety controls in services like Azure OpenAI to generate harmful content, monetize access, and distribute tools to other cybercriminals.

The tech giant’s Digital Crimes Unit (DCU) revealed that the hackers exploited stolen customer credentials scraped from public sources to unlawfully access accounts.

They developed sophisticated software to manipulate AI services, including using stolen Azure API keys and Entra ID credentials to breach systems. The malicious actors then provided detailed instructions on misusing these tools, including generating offensive imagery via DALL-E.

Registrations Open for FutureCrime Summit 2025: India’s Largest Conference on Technology-Driven Crime

Microsoft discovered the illicit activity in July 2024 and has since revoked the group’s access, strengthened its security measures, and secured a court order to seize the website aitism[.]net, a key hub for the operation.

The group also utilized proxy services, such as “de3u,” to facilitate unauthorized API calls and mask their activities.

The attackers allegedly targeted multiple U.S. companies, with evidence pointing to broader campaigns against other AI providers, including OpenAI, Anthropic, AWS Bedrock, and Google Cloud Vertex AI.

Microsoft described the group’s actions as part of a larger “Azure Abuse Enterprise,” highlighting a coordinated and persistent pattern of illegal activity.

The GitHub repository associated with the “de3u” tool, created in November 2023, has since been removed, along with other traces of the group’s infrastructure.

FCRF Awards for ‘Women in Cyber’

However, Microsoft noted that the attackers made efforts to erase their tracks, deleting Rentry.org pages and portions of their proxy services following the seizure of their domain.

This incident underscores the growing threat of cybercriminals exploiting AI services for nefarious purposes. Microsoft and other tech giants continue to combat these threats, emphasizing the importance of robust safeguards to protect cutting-edge technologies from abuse.

As the popularity of AI tools grows, so does their appeal to malicious actors, making it imperative for organizations to stay ahead of evolving cyber risks.

Follow The420.in on

 TelegramFacebookTwitterLinkedInInstagram and YouTube

Related Topics:
Continue Reading