Morrissey Technology

Loading

Cybersecurity

US Cybersecurity Agency : Russian Hackers Used Microsoft Access to Steal Government Emails

Morrissey Technology – The United States Cybersecurity and Infrastructure Security Agency says Russian government-backed hackers have used their access to Microsoft email systems to steal correspondence between officials and the tech giant. This was conveyed by CISA in an emergency directive.

In a briefing dated April 2, the agency warned that hackers were exploiting authentication details shared via email to try to break into Microsoft customer systems FOR4D, including those of an unspecified number of government agencies.

The warning that government agencies were targeted using stolen Microsoft emails follows the company’s announcement in March that it was still grappling with the intruders, which it dubbed “Midnight Blizzard.”

The revelations, which served as a wake-up call for the cybersecurity industry, were followed last week by a report from the US Cybersecurity Review Board which stated that another hack – accused of being carried out by China – could have been prevented, leading to blame for the company’s cybersecurity weaknesses and lack of transparency. intentional.

CISA declined to name institutions that may have been affected. Microsoft said in an email that it is “working with our customers to help them investigate and mitigate. This includes working with CISA on emergency directives to provide guidance to government agencies.”

The Russian Embassy in Washington, which has denied being behind the hacking campaign in the past, did not immediately return a message seeking comment. CISA warned that the hackers might also attack non-governmental groups.

“Other organizations may also be impacted by Microsoft’s corporate email exfiltration,” CISA FOR4D said, encouraging customers to contact Microsoft for more details.