Microsoft accuses Russian hackers of hacking into emails of its top executives

The Russian hacker group Midnight Blizzard, also known as Nobelium, has attacked Microsoft's corporate systems. This was reported by the technology company in its blog.

According to Microsoft, the hacking activity began in late November 2023, but was detected only on January 12, 2024.

During the attack, the attackers were able to access "a very small percentage of Microsoft's corporate email accounts," including those of senior management, cybersecurity, legal, and other departments.

According to the company, the group managed to steal a few emails and attached documents. The investigation revealed that the initiators of the attack were primarily interested in information about Midnight Blizzard itself.

The corporation emphasized that this cyberattack was not related to any vulnerability in Microsoft products or services. At the moment, there is no evidence that hackers have gained access to client environments, source code, or artificial intelligence systems, the company assured.

Microsoft has previously faced attacks from the Midnight Blizzard (Nobelium) group, so it links it to the Russian Foreign Intelligence Service.

In 2021, Nobelium hackers conducted more than 22.8 thousand cyberattacks on technology companies. In addition, Microsoft linked the group to a large-scale cyberattack on US government agencies in 2020 through compromised SolarWinds software.

In 2023, it also accused Midnight Blizzard hackers of hacking the Outlook email client.

Background. Meanwhile, it has become known that Ukrainian hackers have hacked the servers of the Moscow-based Internet provider M9com. It's about 20TB of deleted data: the company's official website, branch sites, mail server, and cyber defense services.