Microsoft will notify users of state-sponsored cyber attacks
Microsoft has published in its blog information on additional measures to ensure the safety of users. She will report to her users that their Microsoft accounts, including Outlook.com and OneDrive, have been compromised by a person or group of individuals belonging to a state-sponsored cyber group.
Microsoft points out that the methods used by state-sponsored cyber groups to compromise users differ in their complexity from those used by simple intruders acting out of their personal and vested interests. Notifying the user of the compromise will not unequivocally indicate that the account was compromised, but indicates that the company has recorded suspicious activity. Activity means that the user needs to take additional measures to protect and protect their Microsoft accounts.
')
Along with the appearance of this information in the company's blog, the media got information that earlier, several years ago, the company recorded the hacking of Hotmail accounts of its users in China, who belong to the opposition in relation to the current government. The hack was a type of state-sponsored cyber attack and Microsoft did not notify the compromised Chinese users about it.
Similar measures to inform users about state-sponsored compromises have already been taken by such large companies as Google, Facebook, and Twitter. These measures were also taken in response to hacking into the accounts of users of these services several years ago, when this became known.
Microsoft points out that the methods used by state-sponsored cyber groups to compromise users differ in their complexity from those used by simple intruders acting out of their personal and vested interests. Notifying the user of the compromise will not unequivocally indicate that the account was compromised, but indicates that the company has recorded suspicious activity. Activity means that the user needs to take additional measures to protect and protect their Microsoft accounts.
')
We're taking an additional step today. An individual or group working on behalf of a nation state.
It is not a problem. It can be a “state-sponsored” pathway. Microsoft doesn’t have to be compromised.
Along with the appearance of this information in the company's blog, the media got information that earlier, several years ago, the company recorded the hacking of Hotmail accounts of its users in China, who belong to the opposition in relation to the current government. The hack was a type of state-sponsored cyber attack and Microsoft did not notify the compromised Chinese users about it.
Similar measures to inform users about state-sponsored compromises have already been taken by such large companies as Google, Facebook, and Twitter. These measures were also taken in response to hacking into the accounts of users of these services several years ago, when this became known.
Source: https://habr.com/ru/post/274443/
All Articles