A flaw in Microsoft’s cloud email software has allowed a group of Chinese hackers of having access to mailboxes of US Government employees. The confirmation came directly from Microsoft which highlighted how the Storm-0558 hacker group managed to compromise around 25 email accounts. Some “consumer” accounts of individuals associated with the affected American organizations have also been hacked.
A group of Chinese hackers has exploited a flaw in Microsoft’s e-mail boxes
According to Microsoft’s several-week investigation, Chinese hackers were able to hack email accounts using Outlook Web Access in Exchange Online (OWA) e Outlook.com forging authentication tokens to access user accounts. The Storm-0558 group, according to what Microsoft reveals, would have “important resources” to carry on its business.
Microsoft said it blocked the attack: now Storm-0558’s hackers no longer have access to compromised accounts. At the moment, however, it is not clear what data has been stolen from the mailboxes affected by the hackers. According to what was revealed by the American agency CISA, the hackers would have managed to get hold of unclassified data.
For more information on the matter, you can consult thetechnical analysis carried out by Microsoft on the Chinese hacker attack.