Russian hackers attacked Microsoft: details
Russian hackers have attacked Microsoft's corporate systems. The company noticed the interference with its internal operations on January 12 and immediately activated a response process to investigate and stop the malicious activity.
The attacker was identified as a hacker sponsored by the Russian organization Nobelium. This was reported by the Microsoft press service.
Starting in late November 2023, the attacker used a password phishing attacks to compromise an outdated non-production test account of a tenant and gain a foothold in the system. Later, the hackers used account permissions to access a small percentage of Microsoft's corporate email accounts.
The attacker could access information about the company's top management and employees responsible for cybersecurity, legal procedures and other functions. Microsoft also admitted that the hackers stole some emails and documents attached to them.
The investigation showed that the hackers initially targeted email accounts to obtain information related to the Midnight Blizzard structure. At the same time, Microsoft noted that the attack was not the result of a vulnerability in the company's products or services.
"To date, there is no evidence that the attacker had any access to the client environment, production systems, source code, or artificial intelligence systems. We will notify customers if any action is required," the company said.
Microsoft also promised to take steps to apply current security standards to legacy systems and internal business processes owned by Microsoft even if these changes may disrupt existing business processes.