0 COMMENTS
02/14/2024 1:04 pm
The computer world is always in constant evolution, which is why corporate secrets must always be protected with many security locks, but sometimes there are people who have enough intellect to break the rules. And that has happened recently with Microsoft, as a new hack has been reported that compromises important data that can come to light and therefore expose itself to competition within this type of market.
The company has discovered a nation-state attack on its corporate systems by a Russian state-sponsored hacking group that was responsible for the sophisticated attack of SolarWinds a few months ago. They claim that the criminals known as Nobeliumwere able to access the email accounts of some members of their leadership team recently, getting their hands on information that could be considered privileged and that has not yet been distributed.
Here what was mentioned by Microsoft in a new statement on his blog:
Starting in late November 2023, the threat actor used a password spraying attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account's permissions to access a very small percentage of Microsoft corporate email accounts, including members. from our senior leadership team and employees in our legal, cybersecurity and other functions, and exfiltrated some emails and attached documents.
The attack was not the result of a vulnerability in Microsoft products or services. To date, there is no evidence that the threat actor had access to customer environments, production systems, source code, or AI systems.
It is worth mentioning that the attack took place days after Microsoft announced its plan to review the security of its software after attacks on the cloud Azure. So they would be looking for some way to find vulnerabilities in the company's system. So, it is possible that it will not be the last time that they have them under the radar, given this, the security teams are already searching for the Russians in their specific location points.
Via: The Verge
Editor's note: It is very strange that this also happens when changes occur in the Xbox division. And that suggests that the alterations will be happening throughout the company, not just in specific sites. We will have to see what happens in the following months within the company.
#Microsoft #suffers #hacking #important #emails
