Microsoft reported a breach by Russian group ‘Midnight Blizzard,’ which accessed internal systems and source code using stolen authentication secrets from a January cyberattack. The unauthorized access was facilitated by a compromised non-production test account lacking multi-factor authentication and linked to an OAuth app with elevated privileges. Microsoft is contacting affected customers and has ramped up security measures to counter the persistent threat.

You are viewing a single thread.
View all comments
74 points

I love the closed source model, where only blackhats get to see the source code that whitehats never had the chance to report bugs on!

permalink
report
reply
45 points

it keeps the bug count down 😏

permalink
report
parent
reply
14 points
*

It’s also better code, obviously. Less people to push bad code. Why else is Linux so niche if it’s so great and open source?

Edit: Lol /s is apparently needed. Thought it was obvious :D

permalink
report
parent
reply
6 points
*
Deleted by creator
permalink
report
parent
reply
7 points

Microsoft does share source code of both client and server versions of Windows with 3rd parties. At some point it was shared also with FSB.

permalink
report
parent
reply

Cybersecurity

!cybersecurity@sh.itjust.works

Create post

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

  • Be respectful. Everyone should feel welcome here.
  • No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
  • No Ads / Spamming.
  • No pornography.

Community Rules

  • Idk, keep it semi-professional?
  • Nothing illegal. We’re all ethical here.
  • Rules will be added/redefined as necessary.

If you ask someone to hack your “friends” socials you’re just going to get banned so don’t do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

Community stats

  • 1.7K

    Monthly active users

  • 1.5K

    Posts

  • 3.1K

    Comments