ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

Midnight Blizzard Targets US Government in Microsoft Hack

A Russian hacker group known as Midnight Blizzard infiltrated US government email correspondence
PUBLISHED APR 16, 2024
Cover Image Source: Getty Images | Photo by Bill Hinton
Cover Image Source: Getty Images | Photo by Bill Hinton

The US Cybersecurity and Infrastructure Security Agency (CISA) revealed that a Russian hacker group known as Midnight Blizzard infiltrated email correspondence between Federal Civilian Executive Branch (FCEB) agencies and Microsoft, following a successful breach of several Microsoft corporate email accounts. The agency’s announcement comes after Microsoft disclosed the hack in January.

Unsplash | Photo by Arget
Image Source: Unsplash | Photo by Arget

According to CISA, the threat actors accessed the information by exfiltrating corporate email data, including authentication details shared between Microsoft customers and the company via email. This allowed them to gain, or attempt to gain, further access to Microsoft customer systems.

In an emergency directive issued on Thursday, April 11, CISA described the compromise as a "grave and unacceptable risk" to the affected agencies and emphasized the urgency of addressing the situation.

Following Microsoft's report in January, which revealed that a Moscow-sponsored hacker group had stolen emails and attached documents and accessed some of the company's source code repositories and internal systems since November 2023, as reported by the Kyiv Post, the US Cybersecurity and Infrastructure Security Agency (CISA) made an announcement.

However, CISA did not specify the extent of the damage or the type of information Midnight Blizzard extracted, but it noted that both the agency and Microsoft had informed the impacted parties.

Microsoft Corporation booth signage is displayed at CES 2023 at the Las Vegas Convention Center | Getty | Photo by David Becker
Image Source: Microsoft Corporation booth signage | Getty | Photo by David Becker

"CISA's Emergency Directive requires agencies to examine the content of the compromised emails, reset compromised credentials, and take additional measures to secure authentication tools for privileged Microsoft Azure accounts," the agency stated.

Microsoft previously identified the group as Midnight Blizzard, a Russian state-sponsored actor known by other names such as Nobelium and Cozy Bear, and linked to Russia’s Foreign Intelligence Service (SVR), according to a June 2022 Microsoft cybersecurity report on Ukraine.

In January, Microsoft stated that the group initially targeted email accounts for information related to Midnight Blizzard. The hacker group is believed to have employed password-spraying attacks, using commonly used passwords across multiple accounts in brute-force attempts. Midnight Blizzard was also responsible for the high-profile 2020 SolarWinds hack, which compromised several US federal agencies.

Pexels | Photo by Tima Miroshnichenko
Image Source: Pexels | Photo by Tima Miroshnichenko

The U.S. Department of State is looking into claims of a cyber incident following the leak of documents reportedly stolen from a government contractor. The company, Acuity, alleged to have been breached, is a technology consulting firm with nearly 400 employees and annual revenue exceeding $100 million.

It offers services such as DevSecOps, IT operations and modernization, cybersecurity, data analytics, and operations support to federal civilian national security clients. "The Department is aware of reports of a cyber incident and is currently investigating," a State Department spokesperson told BleepingComputer.

"The Department is committed to protecting its information and continually works to enhance its cybersecurity measures. For security reasons, we cannot share specific details regarding the nature and scope of the claim."

Cyber privacy losses are turning out to be equivalent to a loss in a ransomware attack. Image Source: Unsplash|Photo by FlyD
 Image Source: Unsplash | Photo by FlyD

The threat actor, known as IntelBroker, claims that the files contain classified information from the Five Eyes intelligence alliance. According to their assertions, the leaked data includes full names, emails, office numbers, personal cell numbers, and email addresses of government, military, and Pentagon employees.

"This data was acquired by breaching Acuity Inc, a company that works closely with the US government and its allies." Since December, IntelBroker has been releasing data it claims to have stolen from various government agencies, including ICE, USCIS, the Department of Defense, and the U.S. Army.

MORE ON MARKET REALIST
The owner of the collection of Danny Lyon SNCC Civil Rights Posters was left astonished in the end.
49 minutes ago
After Harrison bought a signed speed bag for $250, he happened to meet the star at a dinner.
3 hours ago
The contestant, Doug, had a hard time coming up with a sensible answer.
6 hours ago
While Jennings performed a half-baked trick, it still managed to thoroughly entertain the fans.
1 day ago
The player, Andy Schwartz registered the first loss of a car since Seacrest took over as host.
1 day ago
The guest kept his grandparents' antique instruments under his bed for years.
1 day ago
Harris wasn't the only one who came up with an answer that shocked everyone.
1 day ago
Despite getting a high auction estimate, the owner of the Meiji Period lamp chose to keep it.
2 days ago
The player, Gabriel Berkowitz pulled off a perfect night winning over $45,000 and a car.
2 days ago
Harvey showed no mercy after he found out that Sweet Lou Dunbar didn't know how apps work.
2 days ago
The founder of Plop Star made an unforgettable entry and a sad exit from the show.
3 days ago
The host is otherwise quick to reprimand families for backing absurd answers.
3 days ago
While the Marvel comic book fetched a $50,000 appraisal, Harrison felt it was too rich for him.
3 days ago
Jimmy Alexander became the first player to lose a brand-new car on season 43 of the show.
4 days ago
The contestant, Brianne Peterson got extremely unlucky with her letter picks for the final puzzle.
4 days ago
The guest was told that the Jasper Johns Flag Print wouldn't be valuable but it was worth thousands.
4 days ago
It didn’t help that Alvin Rosales was playfully scolded by the host just before losing the Bonus Round.
5 days ago
The photos featured some looks of the show's legendary former host, Alex Trebek, as well.
5 days ago
The player, Kate Stuntz, pulled off a miraculous win to take home over $68,000 and a trip to Iceland.
5 days ago
The owner couldn’t believe the value of Jane Peterson’s "The Floats" gouache painting.
6 days ago