Skip to main content

Microsoft Says Russian Hacking Group Trying To Breach Its Systems Again

Microsoft said on Friday that a Russian state-sponsored hacking group named Midnight Blizzard was trying to breach its systems again, by using information it stole from the tech giant's corporate emails in January.

The disclosure shows that the hacking group analysts link to Russian intelligence is persistent and focused on penetrating Microsoft, which is one of the world's largest software makers and a key provider of digital services and infrastructure to the U.S. government.

The Russian embassy in Washington did not immediately respond to a request for comment on Microsoft's statement. It also hasn't responded to Microsoft's previous statements about Midnight Blizzard activity.

In January, Microsoft said it had found the hackers tried to breach "a very small percentage" of its corporate email accounts including members of its senior leadership team and those in cybersecurity, legal, and other functions.

It appears the hacking group, also known as Nobelium, is trying to use the data it stole then to break into Microsoft systems again, the company said.

"In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorized access," it said in a blog.

That data includes some of its source code repositories and internal systems, the company added. Its shares edged lower following the news.

"It is apparent that Midnight Blizzard is attempting to use secrets of different types it has found," it added.

"Some of these secrets were shared between customers and Microsoft in email, and as we discover them in our exfiltrated email, we have been and are reaching out to these customers to assist them in taking mitigating measures." Microsoft did not name those affected customers.

It also said the hackers had become more aggressive in their targeting, and their use of "password sprays" -- where an attacker uses the same password on multiple accounts in the hope of breaking in -- had increased as much as tenfold compared to their January attack.

In its January statement the company had said it was likely Midnight Blizzard was targeting it because of Microsoft's own robust research unraveling the hacking group's operations. Microsoft's threat intelligence team has been sharing research on Nobelium since at least Dec. 2020, when it released a four-part series on it. One of them was titled "How nation-state attackers like NOBELIUM are changing cybersecurity."

The ongoing attempts to breach Microsoft are a sign of "sustained, significant commitment of the threat actor's resources, coordination, and focus," the company said in its latest blog.

"It may be using the information it has obtained to accumulate a picture of areas to attack and enhance its ability to do so."

There was no evidence that Microsoft's customer-facing systems had been compromised in the hack, the company added.

(Except for the headline, this story has not been edited by NDTV staff and is published from a syndicated feed.)



from NDTV News-World-news https://ift.tt/jqwK0YC
Labels:

Comments

Post a Comment

Popular posts from this blog

US Power Firm Admits It May Have Sparked Texas' Largest Wildfire Ever

A US power company admitted Thursday that its equipment may have sparked the largest wildfire in Texas' history. Xcel -- the parent of Southwest Public Service Company, which provides electricity to part of the state -- said it was working with officials investigating the cause of the blaze that charred more than a million acres (over 400,000 hectares). "Based on currently available information, Xcel Energy acknowledges that its facilities appear to have been involved in an ignition of the Smokehouse Creek fire," the company said. Hundreds of homes are thought to have been destroyed in the fire, which is known to have killed at least two people and over 3,000 farm animals. Xcel, which is facing at least one lawsuit, denied its equipment was improperly maintained. "However, we encourage people who had property destroyed by, or livestock lost in, the Smokehouse Creek fire to submit a claim to Xcel Energy through our claims process," the statement said. The W
Post a Comment
Read more

It's Official, Kamala Harris Is Democratic Candidate For US Election

US Vice President Kamala Harris effectively secured the Democratic party's presidential nomination Friday, confirming her remarkable rise to party standard bearer in November's showdown against Republican Donald Trump. Kamala Harris was the sole candidate on the ballot for a five-day electronic vote of nearly 4,000 party convention delegates. She will be officially crowned at a Chicago convention later this month. "I am honored to be the presumptive Democratic nominee for President of the United States," Kamala Harris, 59, said on a phone-in to a party celebration after securing enough votes by the second day of the marathon vote. In the two weeks since President Joe Biden ended his reelection bid, Kamala Harris has gained full control of the party. No other Democrats stepped forward to challenge her elevation to the top of the ticket, making her confirmation as the first Black and South Asian woman ever to secure a major party's nomination a formality. The a
Post a Comment
Read more

All You Need To Know About Donald Trump's 1st Criminal Trial

Donald Trump goes on trial Monday for allegedly covering up hush money payments to hide affairs ahead of the 2016 presidential election which propelled him into the White House. He will become the first former US president to go on criminal trial when jury selection begins next week. Here are the key questions ahead of the landmark trial: What is Trump accused of? As Trump closed in on victory in the 2016 presidential election, adult film star Stormy Daniels was paid $130,000 to keep quiet about an alleged 2006 sexual tryst with Trump. The payments, made by Trump's lawyer at the time, Michael Cohen, were revealed by The Wall Street Journal in January 2018. Prosecutors have seized on the concealment of the payments as "legal fees" in the Trump Organization's accounts when Cohen was reimbursed as the heart of their case. Prosecutors say Trump "concealed the reason for these payments... which clearly were paid in order to influence voters," former prosec
Post a Comment
Read more