2024-01-20 11:00:04
According to Microsoft, the perpetrator of the cyberattack is “Midnight Blizzard”. There is no evidence that the hackers accessed customer accounts, production systems, source code or artificial intelligence software, the company said.
Hackers linked to Russian intelligence services hacked the emails of senior Microsoft executives, according to a court document filed by the American IT giant. According to Microsoft, the author of the cyberattack is “Midnight Blizzard“. This group acts in conjunction with Russia’s foreign intelligence services, according to Washington and London.
«This actor is known to mainly target states, diplomatic entities, non-governmental organizations and IT service providers, in the United States and Europe“Microsoft said in a blog post last August, regarding an earlier cyberattack. “They seek to collect intelligence by spying on foreign interests over the long term.» The activities of «Midnight Blizzard“, also known as “Noble”, were traced back to the beginning of 2018, according to Microsoft.
Also read: AI: after large companies, Microsoft targets SMEs and individuals
“Seeking a new balance”
The company’s security team detected the latest attack on January 12, triggering defenses that blocked the hackers’ further access. The attack began last November, when hackers tried passwords on a series of accounts and gained access to an old test account, Microsoft said in the court document. The hackers then used this “fulcrum» to access certain Microsoft employee accounts, including those of executives and members of the security team, and retrieved emails and attachments.
«Investigation indicates hackers first targeted email accounts for information related to Midnight Blizzard itself», Said Microsoft. According to the company, there is no evidence that the hackers accessed customer accounts, production systems, source code or artificial intelligence software at Microsoft. “Given the reality of well-resourced and state-funded bad actors, we are seeking a new balance between security and business risks.», underlined Microsoft. “We will act immediately to apply our current security standards to legacy systems and internal business processes owned by Microsoft, even if these changes risk disrupting existing business processes».
#Microsoft #targeted #cyberattack #orchestrated #hackers #linked #Russian #intelligence