• Microsoft : We were hacked by Russia

    • This topic has 1 reply, 2 voices, and was last updated 1 month ago.
    Author
    Topic
    #2629252

    https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/

    The Microsoft security team detected a nation-state attack on our corporate systems on January 12, 2024, and immediately activated our response process to investigate, disrupt malicious activity, mitigate the attack, and deny the threat actor further access. Microsoft has identified the threat actor as Midnight Blizzard, the Russian state-sponsored actor also known as Nobelium. As part of our ongoing commitment to responsible transparency as recently affirmed in our Secure Future Initiative (SFI), we are sharing this update.

    Beginning in late November 2023, the threat actor used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents. The investigation indicates they were initially targeting email accounts for information related to Midnight Blizzard itself. We are in the process of notifying employees whose email was accessed. ..

    * So much so for security / no 2FA

    • This topic was modified 1 month ago by Alex5723.
    4 users thanked author for this post.
    Viewing 0 reply threads
    Author
    Replies
    • #2629481

      * So much so for security / no 2FA

      How come there are people who do Not trust micro$ofts security?, it’s just like the same level as their quality of patching.

      Ofcourse people and businesses state this a nation-state intervention;
      But in the first place the companies level of security fails, CSO and further up, it too expensive and complicated.
      Brrr

      * _ being 20 in the 70's was fun _ *
      1 user thanked author for this post.
    Viewing 0 reply threads
    Reply To: Microsoft : We were hacked by Russia

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information: