Microsoft revealed on Friday that a hacking group associated with a Russian intelligence agency had breached the emails of numerous senior executives and other staff members.
The attack, which Microsoft detected on January 12, has been attributed to a group known as Midnight Blizzard or Nobelium, the same group responsible for the 2020 SolarWinds cyberattack. Both Microsoft and US cybersecurity officials have linked Nobelium to Russia’s Foreign Intelligence Service (SVR).
According to a blog post by Microsoft, the threat actor used a password spray attack to gain access to a legacy non-production test tenant account in late November 2023. They then utilized the account’s permissions to infiltrate a small percentage of Microsoft corporate email accounts, including those of senior leadership team members and employees in cybersecurity, legal, and other departments, and extracted some emails and attached documents.
The company did not…
2024-01-19 18:29:45
Original from www.engadget.com