June 28, 2024 at 02:04PM Microsoft’s corporate infrastructure hack by the Russian government continues to have far-reaching impact as it’s revealed that customers’ emails were also stolen by the Midnight Blizzard hackers. The company is notifying affected customers and providing a secure portal for them to review the compromised emails. The hacking group seems to … Read more
April 11, 2024 at 04:36PM CISA issued an emergency directive for federal agencies to search for signs of a Russian APT that breached Microsoft’s network. The directive requires analysis of compromised emails, resetting of credentials, and securing of Azure accounts. CISA and Microsoft notified affected federal agencies and agreed to provide metadata. The breach follows … Read more
April 11, 2024 at 01:49PM The Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive requiring U.S. federal agencies to address risks arising from the breach of multiple Microsoft corporate email accounts by the Russian APT29 hacking group. The directive mandates agencies to investigate affected emails, reset compromised credentials, and secure privileged Microsoft … Read more
March 25, 2024 at 08:51AM Microsoft discovered a data breach by Russian-state hackers accessing an old, inactive account using a password spray attack. This breach compromised sensitive email accounts and highlighted the vulnerability of all user accounts, not just privileged ones. Organizations are urged to prioritize robust password protection measures, including strong password policies, multi-factor … Read more
March 8, 2024 at 02:33PM Russian government-backed hackers breached Microsoft corporate network, stole source code, and are still attempting unauthorized access using exfiltrated email information. No evidence of customer-facing system compromise. Group may be targeting shared secrets. Increased attack volume noted. Hacking group was previously caught spying on executives and involved in SolarWinds supply chain … Read more
March 8, 2024 at 10:34AM Microsoft discovered that the Russian hacking group ‘Midnight Blizzard’ accessed their internal systems and source code after stealing authentication secrets in January. They gained access using a non-production test account without multi-factor authentication. Microsoft is informing affected customers and increasing security measures to defend against these advanced persistent threats. From … Read more