Hacker News new | past | comments | ask | show | jobs | submit login
Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard (microsoft.com)
21 points by RadixDLT 10 months ago | hide | past | favorite | 7 comments



> In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorized access. This has included access to some of the company’s source code repositories and internal systems. To date we have found no evidence that Microsoft-hosted customer-facing systems have been compromised.

It would certainly be nice to know which of things they "gained" access to, versus which of them they "attempted to gain" access to. The fact that this blog post doesn't specify makes me assume the worst case scenario: that the attackers got a decent amount of source code to comb through for more vulnerabilities in the future.


Knew the full extent of the attack and exfiltrated data, yet took no action to re-secure systems that could be exploited using this information. Negligence?


> Negligence?

No. Just Microsoft. They take security seriously, only when there is a major worm ravaging their customers.


Anywhere know where I might be able to find the leaked source code? Might be useful as reference


I thought Russia was a multi-national state, not a nation state.


[flagged]


Dunno if HN is the place to call for someone’s death. Besides, Bill isn’t the one making the decisions in the article so what does he have to do with it anyway? He started MS?


he did so many atrocious things while at microsoft theres enough subject matter to warrant it




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: