Microsoft Reports Cyberattack
On Friday, Microsoft announced a cyberattack allegedly carried out by state hackers. The group known as Midnight Blizzard successfully infiltrated several corporate postal accounts, including those of top management and employees responsible for cybersecurity, legal, and other functions.
Interestingly, the hackers did not target customer data or traditional corporate information. According to Microsoft’s blog, the purpose of the attack was to gather information about themselves, that is, to know what Microsoft knows about the Midnight Blizzard group.
Microsoft disclosed that the hackers employed the “Password Spraying” method, which allowed them to gain access to a small percentage of corporate emails. However, the company did not disclose the exact number of hacked accounts or the extent of information accessed by the hackers.
It is important to note that the cyberattack was not caused by any vulnerability in Microsoft products or services. Currently, there is no evidence to suggest that the attackers have gained access to customer environments, production systems, source code, or artificial intelligence systems. Microsoft has committed to informing customers if any actions are required.
In response to this incident, Microsoft emphasized the need to accelerate security efforts. The company announced its intention to immediately implement current security standards for Microsoft systems and internal business processes, even if it means violating existing processes.
To prevent future attacks, Microsoft recommends various precautions including the use of authentication methods resistant to phishing and the adoption of best safety practices for Microsoft Teams. Users are strongly advised to be vigilant against social engineering and attacks aimed at stealing accounts, including refraining from entering MFA codes sent through uninvited messages.