Microsoft says Russian hackers breached its systems, accessed source code(www.bleepingcomputer.com)

posted 8 months ago

Kid@sh.itjust.worksM

cybersecurity@sh.itjust.works

23 commentshide report

Microsoft reported a breach by Russian group ‘Midnight Blizzard,’ which accessed internal systems and source code using stolen authentication secrets from a January cyberattack. The unauthorized access was facilitated by a compromised non-production test account lacking multi-factor authentication and linked to an OAuth app with elevated privileges. Microsoft is contacting affected customers and has ramped up security measures to counter the persistent threat.

Sort:

Hot Top Controversial New Old

[ - ]

Psiczar@aussie.zone

6 points

8 months ago

How the fuck does MS get hacked to the point where source code is leaked? It wouldn’t be sitting on a server called win-src-01 in their DMZ. I assume it is on servers within networks that a firewalled off from the regular network that only developers can get to and Peggy-Sue in Accounts can’t.

permalink

report

[ - ]

friend_of_satan@lemmy.world

8 points

8 months ago

They want to release the source code for Wordpad.exe

permalink

report

[ - ]

Mango@lemmy.world

7 points

8 months ago

Oh no!

Anyways.

permalink

report

[ - ]

qjkxbmwvz@startrek.website

40 points

8 months ago

Gosh I hope no one breaches kernel.org and gets the Linux source code!

permalink

report

[ - ]

KuroeNekoDemon@sh.itjust.works

5 points

8 months ago

I really hope gnu.org doesn’t get hacked and gets the graphical source code! /s

permalink

report

parent

[ - ]

Evil_Shrubbery@lemm.ee

22 points

8 months ago

Using ‘username’ and ‘password’ as credentials is basically Microsoft going open sauce.

permalink

report

Cybersecurity

!cybersecurity@sh.itjust.works

Create post

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We’re all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your “friends” socials you’re just going to get banned so don’t do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

Community stats

1.7K
Monthly active users
1.5K
Posts
3.1K
Comments

Community stats

Community moderators