According to a report in The Associated Press (AP), complaints about Outlook being unavailable for up to 18,000 users at the peak of what has proved to be a Distributed Denial-of-Service (DDoS) attack started to appear on Twitter in early June. In a blog post published on Friday, Microsoft recognized the attack and provided some technical information as well as suggestions for preventing similar attacks in the future.
The blog makes no mention of whether the company was able to control the situation or whether the attack ceased on its own. However, the Microsoft 365 Status account on Twitter tweeted about the outage as it happened on June 5th, then again later that day, and ultimately seemed to have things under control the following morning.
The AP article said that a representative (presumably for Microsoft, though it’s not made clear in the article) had confirmed the identity of the team as Anonymous Sudan. According to an article in Cybernews, which covered the attack the same day it occurred, the group has been active since at least January. The gang asserted in that article that its attack lasted for nearly an hour and a half before it ended.
There is “no way to measure the impact if Microsoft doesn’t provide that info,” according to a former National Security Agency offensive hacker called Jake Williams who was featured in the AP report, and he wasn’t aware of Outlook having been struck this heavily before.
Microsoft prevented one of the longest-lasting DDoS attacks ever seen in 2021, which lasted more than 10 minutes and peaked at 2.4 terabits per second (Tbps) of bandwidth. 3.47Tbps were attacked in 2022. The size of the traffic bursts during the attack in June is unknown.
According to Microsoft’s blog post, the OSI layer 7 — the layer of a network where applications access network services — was the target of the DDoS activity. It’s the location where your apps, including email, request their data. Microsoft thinks the Storm-1359 attackers utilized botnets and other tools to launch their attacks “from multiple cloud services and open proxy infrastructures,” and that they seemed to be primarily interested in causing trouble and garnering attention.
Microsoft is yet to give an answer when contacted for further questioning.
Olagoke Ajibola is a creative writer and content producer with an eye for details and excellence. He has a demonstrated history of telling stories for TV, Film and Online. Aside from being fascinated by the power of imagination, his other interest are travel, sport, reading and meeting people.
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
