Microsoft has announced that a Russian hacking group accessed the email accounts of some of its senior leaders. The attack was detected on January 12, 2024, and Microsoft immediately activated its response process. The company has identified the threat actor as Midnight Blizzard, also known as Nobelium. The hackers were able to access a small percentage of Microsoft corporate email accounts, including those of senior leadership and employees in cybersecurity and legal departments. Some emails and attached documents were exfiltrated, but the investigation indicates that the hackers were primarily seeking information related to Midnight Blizzard. Microsoft is in the process of notifying affected employees and has found no evidence of access to customer environments or AI systems. The attack began in late November 2023, and the hackers gained initial access using a password spray attack. The investigation is ongoing, and Microsoft will continue to work with law enforcement and regulators. The company warns of the continued risk posed by well-resourced nation-state threat actors like Midnight Blizzard. Microsoft has previously been targeted in multiple high-profile hacking attempts. The FBI is aware of the incident and is providing assistance.
Подпишитесь на нашу рассылку и получайте информацию о выходе новых статей, информацию об эксклюзивных скидках и другое
Или же подпишитесь на наш Telegram, чтоб всегда быть в курсе наших новостей.