Skip to content Skip to footer

Russian hackers were able to steal Microsoft’s source code and some customer information.

On Friday, announced that the -backed hacking group known as Midnight Blizzard (also known as APT29 or Cozy Bear) could access some of its source code repositories and internal systems in a hack discovered in January 2024.

According to the tech giant, evidence has shown that Midnight Blizzard used information from 's corporate email systems to gain unauthorized access. This included accessing source code repositories and internal systems. However, there is no evidence that customer-facing systems were compromised. is currently investigating the extent of the breach and has reached out to impacted customers. The company did not disclose what specific secrets were accessed or the scale of the compromise.

also noted that Midnight Blizzard had increased its password spray attacks by 10-fold in February, compared to the already large volume observed in January. The threat actor uses information to plan future attacks and enhance its capabilities. This is part of a more significant trend of sophisticated nation-state attacks becoming more prevalent.

The breach is believed to have occurred in November 2023 when Midnight Blizzard used a password spray attack to infiltrate a legacy, non-production test tenant account without . first revealed the APT29 attacks in late January, stating that the group had targeted other organizations using various methods, including stolen credentials and supply chain attacks.

Midnight Blizzard is linked to Russia's Foreign Intelligence Service (SVR) and has been active since 2008. The group is known for its sophisticated and prolific hacking campaigns, including the recent SolarWinds attack.

has stated that it is increasing its security investments to prevent future attacks and is working closely with impacted customers. 

Leave a comment

Newsletter Signup
Address

The Grid —
The Matrix Has Me
Big Bear Lake, CA 92315

01010011 01111001 01110011 01110100 01100101 01101101 00100000
01000110 01100001 01101001 01101100 01110101 01110010 01100101

Never send a human to do a machine's jobAgent Smith

Deitasoft © 2024. All Rights Reserved.