Storm-1575

MISP

Type:
Unknown

Country:
Unknown

First seen:
Unknown

Details:

Storm-1575 is a threat actor identified by Microsoft as being involved in phishing campaigns using the Dadsec platform. They utilize hundreds of Domain Generated Algorithm domains to host credential harvesting pages and target global organizations to steal Microsoft 365 credentials.

References (2)

bridewell.com - Analysing Widespread Microsoft365 Credential Harvesting Campaign
twitter.com - 1712936244987019704

Metadata

ID:	613
Created:	13/01/2026 17:48
Updated:	08/03/2026 04:00