On Friday, a group of hackers reportedly have attacked Microsoft. The hackers managed to gain access to one of its customer-service agents. Following the attack, hackers then launched hacking attempts against Microsoft’s customers.
According to Microsoft, the hackers were the same culprits as the hacking in SolarWinds. Microsoft soon warned affected customers upon the hacking from a group that the company calls Nobellium. The same group had attacked Microsoft in the second half of May.
“A sophisticated Nation-State associated actor that Microsoft identifies as NOBELLIUM accessed Microsoft customer support tools to review information regarding your Microsoft Services subscriptions,” a part of Microsoft’s warning that Reuters managed to get a hold reads.
The warning from Microsoft denies the U.S. government previously attributed the earlier attacks to the Russian government.
Microsoft also sent out warnings to affected customers. The company told the customers to keep cautious on communicating their billing contacts. Microsoft also suggested changing usernames and email addresses. Barring old usernames from logging also becomes one of the recommended methods.
By far, the phishing campaign affected at least three entities. Though, Microsoft refused to reveal the identity of these three entities.
Microsoft to take further measure to resolve the hacking
Microsoft’s spokesman said that the latest breach was not a part of Nobelium’s attack on the company. Prior to this, Nobelium managed to obtain some source code from Microsoft.
The hacking gave quite the panic. Though a White House official said that the situation was far less serious than what SolarWinds had experienced.
The hackers had previously managed to alter the code and gain access SolarWinds customers, including nine U.S. federal agencies.
The Department of Homeland Security further explained that the attackers were smart enough to took advantage of weaknesses in the way Microsoft configure its programs.
As a result, the culprits hacked into Microsoft’s employees’ accounts. The hackers also took this chance to steal the software instructions that govern how Microsoft verifies user identities.
Currently, Microsoft is working with the Homeland Security’s Cybersecurity and Security Agency. Scott McConnell, a spokesman of the group, said the defensive group explained to be “working with Microsoft and our interagency partners to evaluate the impact. We stand ready to assist any affected entities,” Reuters quotes.
Read also: Cyber Attack in Cryptomining are Highest in Southeast Asia
Follow and join us on Youtube, Instagram, Facebook, and Twitter to be part of the trader community in Asia