Microsoft experiences another cyber attack after China email server intrusion

695

Microsoft has been making headlines for all the wrong reasons lately, raising concerns about its approach to cybersecurity. Following reports of a cyber attack originating from China, the tech giant finds itself in the spotlight once again due to various security lapses including data exposure, email breaches, and source code leaks.

According to insights from SOCRadar, a threat intelligence firm, Microsoft inadvertently left internal documents accessible on the internet, providing hackers with an opportunity to infiltrate and extract sensitive data. Among the exposed information were security keys, credentials, and internal files such as source code.

Security experts, including Egemen Kochisarli, Murat Ozfidan, and Cann Yoleri, were among the first to uncover this breach, noting that the exposed data had been vulnerable on the Azure platform for weeks, if not months.

In response, a spokesperson from Microsoft under the leadership of Satya Nadella downplayed the severity of the situation, suggesting that the exposed information was merely accessed by the Bing Search Engine for research and development purposes. They maintain there is no evidence to suggest that external parties, such as cybercriminals, gained access to this data.

These developments come at a time when the White House was poised to launch an official investigation into reports of Chinese hackers breaching Microsoft’s email servers, potentially obtaining sensitive information related to users, the company, and its research and development.

These incidents are concerning and could erode trust in Microsoft’s products and services over the long term. However, it’s worth noting that Microsoft has a track record of prioritizing the security and privacy of its users and is committed to maintaining this standard moving forward.

Ad
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display