|
23.01.2024 22:04:26
|
Microsoft Discloses Breach By Russian Cybercriminals
(RTTNews) - Microsoft Corp. (MSFT) announced that its corporate systems were breached by Russian state-sponsored threat actors in November 2023. However, the intrusion remained undetected until January 2024.
The group responsible for the attack, known as Midnight Blizzard (also APT29, Cozy Bear, or Nobelium), was previously involved in the SolarWinds supply chain attack in 2020.
According to the Microsoft Security Research Center, the attackers utilized a basic password spray attack to compromise several poorly protected corporate email accounts, including those of senior leadership, legal teams, and cybersecurity teams. Consequently, the company is now advocating for an overhaul of its older systems. The breached email accounts contained information sought by the attackers about Microsoft's knowledge of Midnight Blizzard.
Despite the breach, Microsoft has stated that it was able to cut off access to the compromised accounts after the discovery and has assured customers that the hackers did not gain access to AI systems, customer environments, source codes, or production systems.
The company has collaborated with law enforcement and regulators to manage the breach. This incident underscores the importance of adhering to security best practices. Although there are advanced attack methods, hackers often succeed with simple techniques such as password spraying and brute force attacks.
The fact that the threat actors could access Microsoft's accounts for two months without being noticed also revealed a lack of attention to security postures, emphasizing the importance of continuously monitoring cloud logs.
Furthermore, the breach underscores the significance of ongoing cloud log monitoring for security. The successful cyberattack against Microsoft emphasizes the need to protect sensitive information in less critical systems like email and file sharing. Experts suggest implementing continuous monitoring of cloud logs to identify unusual activities before attackers gain access and extract sensitive data.
Der finanzen.at Ratgeber für Aktien!
Wenn Sie mehr über das Thema Aktien erfahren wollen, finden Sie in unserem Ratgeber viele interessante Artikel dazu!
Jetzt informieren!
Nachrichten zu Microsoft Corp.mehr Nachrichten
|
22.11.24 |
Microsoft urges Trump to ‘push harder’ against Russia and China hacks (Financial Times) | |
|
21.11.24 |
Optimismus in New York: Dow Jones nachmittags auf grünem Terrain (finanzen.at) | |
|
20.11.24 |
Schwacher Handel in New York: Dow Jones zum Start im Minus (finanzen.at) | |
|
19.11.24 |
Dow Jones 30 Industrial-Papier Microsoft-Aktie: So viel hätten Anleger an einem Microsoft-Investment von vor 5 Jahren verdient (finanzen.at) | |
|
15.11.24 |
Verluste in New York: Dow Jones verliert zum Ende des Freitagshandels (finanzen.at) | |
|
15.11.24 |
Börse New York: So entwickelt sich der Dow Jones am Freitagnachmittag (finanzen.at) | |
|
15.11.24 |
Schwacher Handel: Dow Jones am Freitagmittag mit Abgaben (finanzen.at) | |
|
15.11.24 |
Handel in New York: Dow Jones zeigt sich zum Handelsstart schwächer (finanzen.at) |
Analysen zu Microsoft Corp.mehr Analysen
| 20.11.24 | Microsoft Buy | Jefferies & Company Inc. | |
| 20.11.24 | Microsoft Buy | Goldman Sachs Group Inc. | |
| 20.11.24 | Microsoft Overweight | JP Morgan Chase & Co. | |
| 19.11.24 | Microsoft Outperform | RBC Capital Markets | |
| 18.11.24 | Microsoft Outperform | RBC Capital Markets |
ETF-Sparplan
Oskar ist der einfache und intelligente ETF-Sparplan. Er übernimmt die ETF-Auswahl, ist steuersmart, transparent und kostengünstig.