The US cybersecurity watchdog said on Thursday (11 April) that Russian Government-backed hackers have used Microsoft’s email system to steal communication between the company and government officials.
The US Cybersecurity and Infrastructure Security Agency said that hackers were breaking into Microsoft’s customer systems by exploiting authentication details shared by email.
Go deeper with GlobalData
Access deeper industry intelligence
Experience unmatched clarity with a single platform that combines unique data, AI, and human expertise.
According to the watchdog, an unspecified number of government agencies have had their correspondence compromised by the hackers.
The warning follows Microsoft’s announcement in March that it was working to combat the Russian hackers, which it named “Midnight Blizzard”.
“In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorised access,” Microsoft said in a blog post in March.
Microsoft said it was “working with our customers to help them investigate and mitigate”.
US Tariffs are shifting - will you react or anticipate?
Don’t let policy changes catch you off guard. Stay proactive with real-time data and expert analysis.
By GlobalData“This includes working with CISA on an emergency directive to provide guidance to government agencies,” a spokesperson added.
The hackers involved are an infamous cyber-espionage group that has previously been linked to Russia.
Several days after Microsoft disclosed the first hack, Hewlett Packard Enterprise said the same hacking group had breached its cloud-based email network.
The same hacking group carried out the breach of US agency emails in 2020. Hackers had access to unclassified email accounts from US intelligence agencies for months before the breach was discovered.
Russia has denied responsibility for the hacks.
