Microsoft Alerts of Ongoing Cyber Threat from Russian Hacking Group

Microsoft has issued a warning that the Russian hacking group known as Nobelium, also referred to as Midnight Blizzard, continues its attempts to breach the company’s internal systems and access its source code repositories.

Advertisement

In a blog post published Friday, Microsoft announced that there was evidence that Midnight Blizzard used information obtained from the company’s marketing emails to gain unauthorized access. This includes access to some of Microsoft’s code base repositories and internal systems. However, Microsoft confirmed that there was no evidence that customers the company encountered were affected.

Cyber ​​criminals behind Midnight Blizzard targeted confidential information, including that shared by Microsoft and itscustomers. Microsoft added that it is actively assisting and seeking support from affected customers.

Midnight Blizzard has increased its attacks, especially on password usage, and the use of attacks increased tenfold in February compared to February, according to Microsoft. The money found in January 2024 is already huge.

To protect against these threats, Microsoft has increased its security investments and implemented better protection. Thecompany has improved monitoring and control measures to reduce the frequency of attacks.

The announcement comes after Microsoft released the first information about the Nobelium cyber attack in January, inwhich hackers from a Russian group compromised the emails of senior executives. At the time, Microsoft said it found noevidence that the hacking group had access to customer data, production systems or administrative rights.

Cyber ​​threat has always been a concern for organizations, with the recent attack on Microsoft leading to a breach of HPEnterprise’s cloud-based email system.

Nobelium, also known as Casual Bear or APT29, is believed to be affiliated with the Russian foreign intelligence agency SVR.The group’s activities address the ongoing cyber threat posed by state-sponsored actors, particularly during regional tensionssuch as the Russia-Ukraine conflict.

In December 2023, Britain’s National Cyber ​​Security Center reported that Russia was involved in several cyberattacks targeting politicians, journalists and activists throughout the year, with the aim of achieving independence. These incidents highlight the importance of effective cybersecurity measures and being alert to cyber threats in today’s interactive digital environment.