Share this article
Latest news
With KB5043178 to Release Preview Channel, Microsoft advises Windows 11 users to plug in when the battery is low
Copilot in Outlook will generate personalized themes for you to customize the app
Microsoft will raise the price of its 365 Suite to include AI capabilities
Death Stranding Director’s Cut is now Xbox X|S at a huge discount
Outlook will let users create custom account icons so they can tell their accounts apart easier
Microsoft confirms Midnight Blizzard has access to its source code
The Russian hacking group is still trying to break into the company’s systems
2 min. read
Published onMarch 10, 2024
published onMarch 10, 2024
Share this article
Read our disclosure page to find out how can you help Windows Report sustain the editorial teamRead more
In January, MicrosoftconfirmedMidnight Blizzard, a Russian hacking group, aka NOBELIUM, attacked its corporate system. Initially, the hackers accessed the corporate email accounts of the company’s senior leadership team members.
It seems that Microsoft is unable to contain theMidnight Blizzard attackas of now. In a recent blog post, the tech giant mentioned Kremlin-backed threat actor has access to some of its source code.
The blog post further mentions that the hacker group also accessed Microsoft’s internal systems. However, there is no evidence that Microsoft-hosted customer-facing systems have been hacked.
Here’s what Microsoft says in its blog post about source code theft.
In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain unauthorized access. This has included access to some of the company’s source code repositories and internal systems.
Microsoft further adds that the hacker group has also accessed some secrets shared between customers and the company in emails. The tech giant believes that NOBELIUM is trying to use different types of secrets it accessed recently.
That’s not all, it adds that Midnight Blizzard has ramped up password spray attacks by as much as 10-fold last month compared to what it saw in January 2024.
The company didn’t add any details about the source code Midnight Blizzard has accessed, nor did it talk about the secrets and scale of compromise in theblog post.
More about the topics:Cybersecurity,microsoft
Vlad Turiceanu
Windows Editor
Passionate about technology,Windows, and everything that has a power button, he spent most of his time developing new skills and learning more about the tech world.
Coming from a solid background in PC building and software development, with a complete expertise in touch-based devices, he is constantly keeping an eye out for the latest and greatest!
User forum
0 messages
Sort by:LatestOldestMost Votes
Comment*
Name*
Email*
Commenting as.Not you?
Save information for future comments
Comment
Δ
Vlad Turiceanu
Windows Editor
Coming from a solid background in PC building and software development, he’s a Windows 11 Privacy & Security expert.
