It is assumed that no customer data was affected.
Microsoft has published additional details of a security incident discovered in mid-January 2024. Microsoft came to the conclusion that they were attacked by the hacker group Midnight Blizzard, allegedly associated with Russia.
Hackers, Microsoft believes, managed to gain access to part of the company's internal data. In particular, we are talking about a number of internal systems and some repositories with source codes.
Microsoft is confident that hackers were not able to compromise systems working with the company's clients. At the same time, the company believes that hackers are already trying to use the data they received.
In particular, hackers have become much more active in carrying out Password Spray attacks, selecting known passwords from a large array of known credentials. According to Microsoft, the intensity of such attacks has increased 10 times.
Microsoft employees have not yet completed their investigation into the incident involving an attack on the internal network. The company promises to continue to talk about the progress of the investigation.
This is interesting