Office 365 (Unknown)
Threat actors publicly named in connection with targeting Office 365. Sorted by IDF score (rarity-weighted CVE attribution) with extraction confidence as tiebreaker. Each row's evidence is a verbatim quote from the source attribution.
1 attributed actor(s) ·
Category mix: unknown=1 ·
Attacker regions: —=1
| Actor | Category | Sponsor | Confidence | Evidence | CVEs | IDF | Last active |
|---|---|---|---|---|---|---|---|
| Scattered Spider (G1015) | unknown | — | 0.90 | obtain administrator access in Okta, AWS, and Office 365. | 1 | 1.2 | 2026 |
Sibling victims
Other named victims whose attacker circle overlaps with this one — defenders use this to find sectoral or geographic cohorts that face the same actors.
- Okta — 1 shared actor(s)
- Amazon Web Services — 1 shared actor(s)
« All victims · All actors · Browse by sector · Recent breach notifications