New Wave of Brute-Force Attacks Target SQL Servers – Microsoft Warns
Microsoft uncovered a malicious campaign targeting SQL servers using a malware dubbed SuspSQLUsage. Attackers leverage a built-in PowerShell binary to achieve persistence on compromised systems. However, for initial compromise, they rely on brute-force tactics. It is recommended to monitor for a suspicious or unknown activity or repeated login attempts.