The Microsoft 365 Defender Threat Intelligence Team identifies two incidents in which hackers deployed BlackCat ransomware without admin privileges.