Microsoft executive emails hacked by Russian intelligence group, company says

  • Microsoft said it detected an cyberattack carried out by the same Russian intelligence group responsible for the broad-based SolarWinds hack in 2020.
  • The new incident hasn’t had a material impact on company operations, but Microsoft still wanted to honor new cybersecurity event disclosure rules.

microsoft, microsoft executive emails hacked by russian intelligence group, company says

Satya Nadella, CEO of Microsoft

Microsoft said in a Friday regulatory filing that a Russian intelligence group accessed some of the software maker’s top executives’ email accounts. Nobelium, the same group that breached government supplier SolarWinds in 2020, carried out the attack, which Microsoft detected last week, according to the company.

It isn’t the first time Russian hackers have gained entry into Microsoft’s systems. State-sponsored attacks that can result in the dissemination of sensitive data becomes a greater risk during periods of armed conflict, and Russia’s war against Ukraine has been going on for almost two years now. On Thursday Russia said Ukrainian forces conducted drone strikes in multiple Russian locations.

Microsoft’s announcement comes after new U.S. requirements for disclosing cybersecurity incidents went into effect. A Microsoft spokesperson said that while the company does not believe the attack had a material impact, it still wanted to honor the spirit of the rules.

In late November, the group accessed “a legacy non-production test tenant account,” Microsoft’s Security Response Center wrote in the blog post. After gaining access, the group “then used the account’s permissions to access a very small percentage of Microsoft corporate email accounts, including members of our senior leadership team and employees in our cybersecurity, legal, and other functions, and exfiltrated some emails and attached documents,” the corporate unit wrote.

The company’s senior leadership team, including finance chief Amy Hood and president Brad Smith, regularly meets with CEO Satya Nadella.

Microsoft said it has not found signs that Nobelium had accessed customer data, production systems or proprietary source code.

The U.S. government and Microsoft consider Nobelium to be part of the Russian foreign intelligence service SVR. The hacking group was responsible for one of the most prolific breaches in U.S. history when it added malicious code to updates to SolarWinds’ Orion software, which some U.S. government agencies were using. Microsoft itself was ensnared in the hack.

Nobelium, also known as APT29 or Cozy Bear, is a sophisticated hacking group that has attempted to breach the systems of U.S. allies and the Department of Defense. Microsoft also uses the name Midnight Blizzard to identify Nobelium.

It was also implicated alongside another Russian hacking group in the 2016 breach of the Democratic National Committee’s systems.

Last year, a vulnerability in Microsoft software allowed China-aligned hackers to access the email accounts of senior government officials, including Commerce Secretary Gina Raimondo, ahead of a critical U.S.-China meeting. The company’s “negligent cybersecurity practices” led to the attack, Sen. Ron Wyden, a Democrat from Oregon, wrote in a letter to Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, and other federal officials.

“We are continuing our investigation and will take additional actions based on the outcomes of this investigation and will continue working with law enforcement and appropriate regulators,” the Microsoft blog post said.

CISA and the Federal Bureau of Investigation did not immediately respond to requests for comment.

News Related

OTHER NEWS

Jimmy Carter and all living former first ladies to attend Rosalynn Carter’s memorial service

Former President Jimmy Carter is expected to attend the Tuesday memorial service for his late wife, Rosalynn Carter, in Atlanta, his grandson told CNN – a tribute that will also be ... Read more »

Rob Reiner to Film ‘This Is Spinal Tap' Sequel in February, Says Paul McCartney and Elton John Will Appear

Rob Reiner to Film ‘This Is Spinal Tap’ Sequel in February, Says Paul McCartney and Elton John Will Appear Forty years after making his directorial debut with the 1984 cult ... Read more »

Best Buy's Biggest Cyber Monday Deals on Samsung TVs, Sony Headphones, and Dyson Vacuums

Plus laptops and more last-minute deals you don’t want to miss People / Jaclyn Mastropasqua We have reached Cyber Monday is officially here, and there are loads of great deals ... Read more »

The Joffre Lakes surge returns north of Pemberton

The Joffre Lakes surge is back, much to the dismay of Pemberton and Mount Currie locals. Video footage shared with Pique shows a long line of cars illegally parked on ... Read more »

Activists calling for Gaza ceasefire begin hunger strike outside White House

Photograph: Jim Watson/AFP/Getty Images Leftwing activists including the actor Cynthia Nixon, famous for her role in Sex and the City, have begun a hunger strike outside the White House aimed ... Read more »

We just got a first look at McDonald's secretive new spinoff restaurant CosMc's

A construction site in Bolingbrook, Illinois, presumed to be the first location of CosMc’s. Scott Fredrickson McDonald’s has been reluctant to share many details about its planned new restaurant concept ... Read more »

Conor McGregor’s The Black Forge posts more than $2 million in losses since 2021 opening

Conor McGregor’s The Black Forge posts more than $2 million in losses since 2021 opening Conor McGregor made around a $2 million investment when he purchased the Dublin bar he ... Read more »
Top List in the World