The password spray attacks target users on standard corporate external services such as webmail, remote desktop access, Active Directory Federated Services (ADFS) or cloud based services such as Office 365. Depending on the credentials and service, successful authentication can potentially lead to the actor gaining access to corporate emails, the corporate directory, global address books, remote desktop services or administrative access.
2019-130: Password spray attacks
Alert status
high
First published:
05 Aug 2019
Last updated:
05 Aug 2019
Content written for
Small & medium business
Large organisations & infrastructure
Government