Cyber Resilience

Microsoft (US)

Threat actors publicly named in connection with targeting Microsoft. Sorted by IDF score (rarity-weighted CVE attribution) with extraction confidence as tiebreaker. Each row's evidence is a verbatim quote from the source attribution.

5 attributed actor(s) · Category mix: hacktivist=3, competitor=2 · Attacker regions: EU=2, US=1, International=1, —=1

Actor Category Sponsor Confidence Evidence CVEs IDF Last active
Anonymous Sudan (HACK-ANONYMOUS-SUDAN)hacktivist1.00High- volume DDoS against Microsoft, OpenAI, Scandinavian banks, and EU government targets 2023-2024.00.0
ShinyHunters (HACK-SHINYHUNTERS)hacktivist1.00(Tokopedia, Microsoft GitHub leak, Wattpad, AT&T)00.0
LAPSUS$ (hacktivist persona) (HACK-LAPSUS-HACKTIVIST)hacktivist0.95claiming high-profile breaches at Microsoft, NVIDIA, Samsung, Okta00.0
TomTom NV (Microsoft FAT32 / GPS patent dispute 2009) (COMP-TOMTOM-MICROSOFT-NAV)competitor🇳🇱 NL0.95named as defendant by Microsoft in a March 2009 W.D. Wash. complaint over the FAT32 file system00.0
Industrial espionage (competitor)competitorAggregated trade-secret / talent-poaching cases — see the industrial-espionage record.

Sibling victims

Other named victims whose attacker circle overlaps with this one — defenders use this to find sectoral or geographic cohorts that face the same actors.

Public disclosure history

Official breach notifications filed by this organisation (SEC 8-K Item 1.05 + regulator enforcement). Distinct from the actor-attributed list above; surfaces the disclosures even when no public attribution exists.

DisclosedFiling
2024-03-08SEC 8-K
2024-01-19SEC 8-K

« All victims  ·  All actors  ·  Browse by sector  ·  Recent breach notifications