April 18, 2025 05:22 am (IST)
Follow us:
facebook-white sharing button
twitter-white sharing button
instagram-white sharing button
youtube-white sharing button
No change in 'waqf by user' for now till next hearing: Supreme Court to Centre | Supreme Court rules Bengal govt teachers 'not identified as tainted' in SSC scam can continue till fresh appointments | 'Yogi sabse bada bhogi hai': Mamata Banerjee slams Uttar Pradesh CM over Murshidabad riots remark | Uttar Pradesh: 11-year-old speech and hearing impaired girl brutally raped, accused nabbed | US Vice President JD Vance, his family to visit India next week; meet PM Modi | Karnataka Governor sends bill providing 4 pct reservation to Muslims in govt contracts to President | Supreme Court considers issuing interim stay on 3 points of Waqf law, Centre urges for more time to explain | Amid clash with Guv, MK Stalin forms panel to maintain Tamil Nadu's autonomy | 'I have nothing to hide': Robert Vadra reaches ED office on second summons over Haryana land deal case | 'What kind of a language is this?': Opposition slams Modi's 'young Muslims repair punctures' remark over Waqf Act
Microsoft
Microsoft claims its corportate system attacked by Russian state-sponsored group. Photo Courtesy: Tadas Sar/Unsplash

Microsoft says its corporate system was attacked by Russian state-sponsored group

| @indiablooms | Jan 20, 2024, at 11:41 pm

IT Major Microsoft on Friday said its corporate system was attacked by a Russian state-sponsored group.

In a blog post,  the company said: "The Microsoft security team detected a nation-state attack on our corporate systems on January 12, 2024, and immediately activated our response process to investigate, disrupt malicious activity, mitigate the attack, and deny the threat actor further access."

Microsoft has identified the threat actor as Midnight Blizzard, the Russian state-sponsored actor also known as Nobelium.

"As part of our ongoing commitment to responsible transparency as recently affirmed in our Secure Future Initiative (SFI), we are sharing this update," the blog said.

Microsoft said in November last year the group used a password spray attack to compromise a legacy non-production test tenant account and gain a foothold, and then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents.

"The investigation indicates they were initially targeting email accounts for information related to Midnight Blizzard itself. We are in the process of notifying employees whose email was accessed," the company said in its blog.

"The attack was not the result of a vulnerability in Microsoft products or services. To date, there is no evidence that the threat actor had any access to customer environments, production systems, source code, or AI systems. We will notify customers if any action is required," the blog post said.

The company said the attack highlights the continued risk posed to all organizations from well-resourced nation-state threat actors like Midnight Blizzard. 

Support Our Journalism

We cannot do without you.. your contribution supports unbiased journalism

IBNS is not driven by any ism- not wokeism, not racism, not skewed secularism, not hyper right-wing or left liberal ideals, nor by any hardline religious beliefs or hyper nationalism. We want to serve you good old objective news, as they are. We do not judge or preach. We let people decide for themselves. We only try to present factual and well-sourced news.

Support objective journalism for a small contribution.