Octo Tempest Threat Actor Profile

Episode 5 of the Microsoft Threat Intelligence Podcast podcast, hosted by Microsoft, titled "Octo Tempest Threat Actor Profile" was published on November 1, 2023 and runs 46 minutes.

November 1, 2023 ·46m · Microsoft Threat Intelligence Podcast

0:00 / 0:00

Summary

On this week's episode of The Microsoft Threat Intelligence Podcast, Sherrod DeGrippo is joined by Microsoft threat research experts to talk about the activities of a threat actor known as Octo Tempest (which overlaps with research associated with 0ktapus, Scattered Spider, and UNC3944) and the blog released by Microsoft threat intelligence and Microsoft incident response groups. The discussion covers various tactics, techniques, and procedures Octo Tempest employs, such as SIM swapping, SMS phishing, and living off the land rather than using traditional malware. Octo Tempest is portrayed as a highly bespoke and hands-on threat actor, often engaged in "keyboard-to-keyboard combat" and showing extreme persistence even after being detected. In this episode you’ll learn: Techniques used to modify email rules and evade defensive tools The contrast between tailored attacks and automated targeted threat actors Why organizations should separate high-privileged accounts from normal user accounts Some questions we ask: Is there an end game for OctoTempest, and is it always ransomware? What is the importance of assuming the first-factor password is already compromised? How can organizations test controls and alerting for their security posture? Resources: View Sherrod DeGrippo on LinkedIn https://aka.ms/octo-tempest Related Microsoft Podcasts: Afternoon Cyber Tea with Ann Johnson The BlueHat Podcast Uncovering Hidden Risks Discover and follow other Microsoft podcasts at microsoft.com/podcasts Get the latest threat intelligence insights and guidance at Microsoft Security Insider The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of The CyberWire Network.

Episode Description

On this week's episode of The Microsoft Threat Intelligence Podcast, Sherrod DeGrippo is joined by Microsoft threat research experts to talk about the activities of a threat actor known as Octo Tempest (which overlaps with research associated with 0ktapus, Scattered Spider, and UNC3944) and the blog released by Microsoft threat intelligence and Microsoft incident response groups. The discussion covers various tactics, techniques, and procedures Octo Tempest employs, such as SIM swapping, SMS phishing, and living off the land rather than using traditional malware. Octo Tempest is portrayed as a highly bespoke and hands-on threat actor, often engaged in "keyboard-to-keyboard combat" and showing extreme persistence even after being detected. In this episode you’ll learn: Techniques used to modify email rules and evade defensive tools The contrast between tailored attacks and automated targeted threat actors Why organizations should separate high-privileged accounts from normal user accounts Some questions we ask: Is there an end game for OctoTempest, and is it always ransomware? What is the importance of assuming the first-factor password is already compromised? How can organizations test controls and alerting for their security posture? Resources: View Sherrod DeGrippo on LinkedIn https://aka.ms/octo-tempest Related Microsoft Podcasts: Afternoon Cyber Tea with Ann Johnson The BlueHat Podcast Uncovering Hidden Risks Discover and follow other Microsoft podcasts at microsoft.com/podcasts Get the latest threat intelligence insights and guidance at Microsoft Security Insider The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of The CyberWire Network.

Share this episode

Similar Episodes

Build AI Agents by Voice, Not Workflows

Apr 8, 2026 ·27m

The AI Coding Reckoning: What Breaks First?

Apr 5, 2026 ·35m

Build AI Agents Overnight: Prompt-to-Prototype

Apr 1, 2026 ·29m

Copilot Chaos: A Simple Map of Microsoft's AI

Mar 30, 2026 ·28m

AI Adoption Isn’t IT: Exec Alignment Comes First

Mar 29, 2026 ·31m

From AI Fear to Daily Habit: The 90-Day Playbook

Mar 25, 2026 ·22m

Similar Podcasts

Microsoft Innovation Podcast Mark Smith [nz365guy] If you want to get your ideas or questions featured on an episode, please leave us a voicemail: https://www.microsoftinnovationpodcast.com/voicemail/Dive into the future of work with the "Microsoft Innovation Podcast," exploring the intersection of People, Business, Technology, and AI. Engage with expert guests—including thought leaders from Microsoft, industry innovators, and community specialists—who are redefining the world with advancements in AI, Cloud technologies, the Power Platform, Dynamics 365, and beyond.Every episode delivers a blend of in-depth discussions, practical insights, and actionable strategies tailored for professionals driving enablement and innovation. Join us across our six shows:The Power Platform ShowThe MVP ShowThe Copilot ShowThe Ecosystems ShowThe AI AdvantageThe AI Unfilter The Microsoft Innovative Expert Spotlight Series Podcast Jeffrey Bradbury Welcome to the Microsoft Innovative Educator (MIE) Spotlight Series Podcast. If you are an educator looking to learn how to leverage the power of innovative teaching with technology in your classroom, this is the podcast for you. Each episode of the MIE Spotlight Series features a dynamic teacher, a Microsoft Innovative Educator, showcasing how they are transforming their classrooms through creative lessons and 21st century teaching styles. This podcast is hosted by educator Jeff Bradbury from the TeacherCast Educational Network and brought to you by Microsoft in Education. Hybrid Work rund um Microsoft 365 FellowCast Die hybride Arbeitswelt stellt uns vor ganz neue Herausforderungen. Ständig schwappen auch innerhalb von Microsoft 365 neue Technologien auf den Markt, die uns helfen sollen, unsere hybride Arbeitswelt innovativer und produktiver zu gestalten. Doch wo bleibt der Mensch? Brauchen wir ganz neue Konzepte, um eine gute Employee Experience zu erschaffen? Wie helfen uns Teams-(Custom)-Apps, Viva & Co. dabei, unsere interne Kommunikation zu verbessern und Mitarbeitende glücklicher zu machen? Wie erzeugen wir heute in einer hybriden Arbeitswelt ausreichend Verbundenheit, um Mitarbeitende aus unterschiedlichen Kulturen gesund und motiviert zu integrieren? Über all das, wollen wir in diesem Podcast mit verschieden Expertinnen und Experten aus dem Modern Work Umfeld reden. Tech Directions EY Microsoft Welcome to the EY Microsoft Tech Directions podcast series – your briefing on the biggest technology trends and how they will help organizations build a better working world. We investigate the benefits of technologies and discuss how they herald a new era of improved customer, employee and stakeholder experiences, while also increasing return on investment for shareholders. In each podcast we’ll reveal how EY and Microsoft can help companies digitally transform by applying their considerable experience and innovative technologies.

URL copied to clipboard!