Microsoft reported a breach by Russian group ‘Midnight Blizzard,’ which accessed internal systems and source code using stolen authentication secrets from a January cyberattack. The unauthorized access was facilitated by a compromised non-production test account lacking multi-factor authentication and linked to an OAuth app with elevated privileges. Microsoft is contacting affected customers and has ramped up security measures to counter the persistent threat.
Oh, no. Imagine all the havoc that could be wrought if the source code for an operating system was released onto the internet /s
That’s why you should never rely on security through obscurity.
– Sent from my Linux desktop
I don’t think that is the concern here.
Microsoft is a huge cloud provider now.
I love the closed source model, where only blackhats get to see the source code that whitehats never had the chance to report bugs on!
Microsoft does share source code of both client and server versions of Windows with 3rd parties. At some point it was shared also with FSB.
It’s also better code, obviously. Less people to push bad code. Why else is Linux so niche if it’s so great and open source?
Edit: Lol /s is apparently needed. Thought it was obvious :D
Midnight Blizzard hacks Microsoft again
Today, Microsoft says that Midnight Blizzard is using secrets found in the stolen data to gain access to some of the company’s systems and source code repositories in recent weeks.
Oh no!
Anyways.
