A China-linked hacking group successfully breached protected email accounts of organizations worldwide, including U.S. government agencies.
Microsoft said that it was able to mitigate a months-long cyber attack that affected over two dozen organizations worldwide, according to a statement released by the company on Tuesday.
Experts and government officials fear the attack is part of a larger espionage campaign by China to acquire sensitive information from government intelligence agencies across the globe, The Wall Street Journal reported.
The cyber attack was first detected in June after reports of strange activity on consumer and government email servers. Since the discovery, Microsoft and the State Department have been scrambling to mitigate the attack.
In the news: U.S. Embassy Choir Sang ‘Soulful Rendition’ Of Chinese National Anthem At 4th July Event In Beijing
“Last month, U.S. government safeguards identified an intrusion in Microsoft’s cloud security, which affected unclassified systems. Officials immediately contacted Microsoft to find the source and vulnerability in their cloud service,” said Adam Hodge, spokesman for the White House National Security Council. “We continue to hold the procurement providers of the U.S. government to a high-security threshold.”
The full scope of the attack and the specific organizations affected has yet to be determined, according to the WSJ.
The hacking group, called Storm-0558, took advantage of a security weakness in Microsoft’s Outlook servers by forging authentication tokens needed to access email accounts, according to the company. Microsoft said it has now “completed mitigation of this attack for all customers.”
In the news: Sen. Rick Scott Says China Is Eager To Unlawfully Detain Americans
“We added substantial automated detections for known indicators of compromise associated with this attack to harden defenses and customer environments, and we have found no evidence of further access,” said Charlie Bell, Executive Vice President of Microsoft. “We are continually self-evaluating, learning from incidents, and hardening our identity/access platforms to manage evolving risks around keys and tokens.”
China has routinely denied any involvement in hacking efforts against the U.S., despite numerous instances of cyber attacks with the goal of stealing sensitive information and disrupting communication networks. In May, Microsoft discovered a separate cyber attack led by Chinese-sponsored hacking group Volt Typhoon that gained access to infrastructure organizations in the U.S., according to Microsoft.
Android Users, Click To Download The Free Press App And Never Miss A Story. Follow Us On Facebook and Twitter—signup for our free newsletter.
We can’t do this without your help; visit our GiveSendGo page and donate any dollar amount; every penny helps