Microsoft has confirmed that few employees email accounts were accessed during the latest round of attacks by the Syrian Electronic Army.
The hacking group, which has taken responsibility for an array of breaches in the past couple of years, tweeted three e-mails over the weekend that appeared to originate from Microsoft employee Outlook Web Access accounts.
The screenshots posted by the group included conversations among employees regarding recent compromises of Microsoft-owned Twitter accounts.
"A social engineering cyberattack method known as phishing resulted in a small number of Microsoft employee social media and e-mail accounts being impacted," a Microsoft spokesperson said.
"These accounts were reset and no customer information was compromised. We continue to take a number of actions to protect our employees and accounts against this industrywide issue."
It’s clear the attacks were part of a complex phishing attack, but the Syrian Electronic Army have been relentless in their targeting of Microsoft. "It seems bit.ly is the backdoor that has been found," says one Microsoft employee in internal emails posted by the SEA.
The hacking group, which has taken responsibility for an array of breaches in the past couple of years, tweeted three e-mails over the weekend that appeared to originate from Microsoft employee Outlook Web Access accounts.
The screenshots posted by the group included conversations among employees regarding recent compromises of Microsoft-owned Twitter accounts.
"A social engineering cyberattack method known as phishing resulted in a small number of Microsoft employee social media and e-mail accounts being impacted," a Microsoft spokesperson said.
"These accounts were reset and no customer information was compromised. We continue to take a number of actions to protect our employees and accounts against this industrywide issue."
It’s clear the attacks were part of a complex phishing attack, but the Syrian Electronic Army have been relentless in their targeting of Microsoft. "It seems bit.ly is the backdoor that has been found," says one Microsoft employee in internal emails posted by the SEA.
No comments:
Post a Comment