Microsoft would have suffered a cyber attack conducted by hackers with known ties to Russia: Midnight Blizzard. These attackers were able to infiltrate a limited number of account emailgenerating concerns about the security of sensitive information handled by the company.
Microsoft under attack by pro-Russian hackers
As ANSA reports, the attack comes from the group Midnight Blizzard, also known as Nobelium. The group has a history of targeted attacks on nations, diplomatic entities, non-governmental organizations and IT service providers. This time it targeted Microsoft, a technology giant with a vast global presence.
The discovery of this attack occurs on January 12thbut it is believed that the start of operations dates back to the month of November last. However, Microsoft reports on its blog that “the attack was not the result of a vulnerability in Microsoft products or services. To date, there is no evidence that the threat actor had access to customer environments, to production systems, source code or artificial intelligence systems. We will inform customers if any action is required.”
Microsoft has announced its own collaboration with law enforcement and regulatory authorities to find those responsible for these attacks. Furthermore, he is committed to sharing further information on the matter for the benefit of the cybersecurity community.
The cyberattack suffered by Microsoft highlights the growing cybersecurity risk for companies and individuals. Basic security practices (changing email passwords regularly, enabling two-factor authentication where possible) can make a difference and reduce risk.
