<ul><li>Microsoft warns Azure cloud users about a Chinese-controlled botnet engaged in password spraying.</li><li>The botnet, known as CovertNetwork-1658, uses highly evasive techniques for password guessing attacks.</li><li>The botnet's use of compromised SOHO IP addresses and a rotating set of IP addresses makes detection difficult.</li><li>The low-volume password spray process makes it challenging to detect multiple failed sign-in attempts from one IP address or account.</li></ul>

IoT Devices in Password-Spraying Botnet

Discover more