ECONOMY & WORK
MONEY 101
NEWS
PERSONAL FINANCE
NET WORTH
About Us Contact Us Privacy Policy Terms of Use DMCA Opt-out of personalized ads
© Copyright 2023 Market Realist. Market Realist is a registered trademark. All Rights Reserved. People may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.
MARKETREALIST.COM / NEWS

Midnight Blizzard Targets US Government in Microsoft Hack

A Russian hacker group known as Midnight Blizzard infiltrated US government email correspondence
PUBLISHED APR 16, 2024
Cover Image Source: Getty Images | Photo by Bill Hinton
Cover Image Source: Getty Images | Photo by Bill Hinton

The US Cybersecurity and Infrastructure Security Agency (CISA) revealed that a Russian hacker group known as Midnight Blizzard infiltrated email correspondence between Federal Civilian Executive Branch (FCEB) agencies and Microsoft, following a successful breach of several Microsoft corporate email accounts. The agency’s announcement comes after Microsoft disclosed the hack in January.

Unsplash | Photo by Arget
Image Source: Unsplash | Photo by Arget

According to CISA, the threat actors accessed the information by exfiltrating corporate email data, including authentication details shared between Microsoft customers and the company via email. This allowed them to gain, or attempt to gain, further access to Microsoft customer systems.

In an emergency directive issued on Thursday, April 11, CISA described the compromise as a "grave and unacceptable risk" to the affected agencies and emphasized the urgency of addressing the situation.

Following Microsoft's report in January, which revealed that a Moscow-sponsored hacker group had stolen emails and attached documents and accessed some of the company's source code repositories and internal systems since November 2023, as reported by the Kyiv Post, the US Cybersecurity and Infrastructure Security Agency (CISA) made an announcement.

However, CISA did not specify the extent of the damage or the type of information Midnight Blizzard extracted, but it noted that both the agency and Microsoft had informed the impacted parties.

Microsoft Corporation booth signage is displayed at CES 2023 at the Las Vegas Convention Center | Getty | Photo by David Becker
Image Source: Microsoft Corporation booth signage | Getty | Photo by David Becker

"CISA's Emergency Directive requires agencies to examine the content of the compromised emails, reset compromised credentials, and take additional measures to secure authentication tools for privileged Microsoft Azure accounts," the agency stated.

Microsoft previously identified the group as Midnight Blizzard, a Russian state-sponsored actor known by other names such as Nobelium and Cozy Bear, and linked to Russia’s Foreign Intelligence Service (SVR), according to a June 2022 Microsoft cybersecurity report on Ukraine.

In January, Microsoft stated that the group initially targeted email accounts for information related to Midnight Blizzard. The hacker group is believed to have employed password-spraying attacks, using commonly used passwords across multiple accounts in brute-force attempts. Midnight Blizzard was also responsible for the high-profile 2020 SolarWinds hack, which compromised several US federal agencies.

Pexels | Photo by Tima Miroshnichenko
Image Source: Pexels | Photo by Tima Miroshnichenko

The U.S. Department of State is looking into claims of a cyber incident following the leak of documents reportedly stolen from a government contractor. The company, Acuity, alleged to have been breached, is a technology consulting firm with nearly 400 employees and annual revenue exceeding $100 million.

It offers services such as DevSecOps, IT operations and modernization, cybersecurity, data analytics, and operations support to federal civilian national security clients. "The Department is aware of reports of a cyber incident and is currently investigating," a State Department spokesperson told BleepingComputer.

"The Department is committed to protecting its information and continually works to enhance its cybersecurity measures. For security reasons, we cannot share specific details regarding the nature and scope of the claim."

Cyber privacy losses are turning out to be equivalent to a loss in a ransomware attack. Image Source: Unsplash|Photo by FlyD
 Image Source: Unsplash | Photo by FlyD

The threat actor, known as IntelBroker, claims that the files contain classified information from the Five Eyes intelligence alliance. According to their assertions, the leaked data includes full names, emails, office numbers, personal cell numbers, and email addresses of government, military, and Pentagon employees.

"This data was acquired by breaching Acuity Inc, a company that works closely with the US government and its allies." Since December, IntelBroker has been releasing data it claims to have stolen from various government agencies, including ICE, USCIS, the Department of Defense, and the U.S. Army.

MORE ON MARKET REALIST
Early 1980s was a special era as several rare coins were minted then.
7 hours ago
According to reports, the fisherman from Puerto Princesa found the item over a decade ago while he was fishing in the sea.
12 hours ago
For decades, the painting was hung in a shabby frame in the living room.
15 hours ago
The asteroid was discovered by Italian astronomer Annibale de Gasparis on March 17, 1852, who named it after the Greek Goddess of the soul.
16 hours ago
In the video, another friend can be heard gasping and noting how she thought that Maddie was 'exaggerating.'
19 hours ago
The man from New Jersey who was looking to save a few bucks, didn't know what luck had in store for him.
1 day ago
In 2004, Ashley Revell from London won $270,000 in one of the most stunning events in gambling history.
1 day ago
One of the rarest Rolex watches in the world was kept in a safety deposit for decades, unworn.
1 day ago
The "Rolling Stones" singer said leaving a part of the inheritance might "do some good in the world."
1 day ago
Inititally, reports claimed that it sold for $1.8 million which changed as the the dust cleared up.
1 day ago
The number was so large that it didn't even fit on a single line on the document.
1 day ago
Her new properties were estimated to be worth around $50 million.
2 days ago
He sued the lottery company for breach of contract, gross negligence and the infliction of emotional distress among other claims.
2 days ago
As of 2024, the iconic West Coast rapper is worth well over $160 million.
2 days ago
Taylor never knew he had won because the slot machine had malfunctioned.
2 days ago
"People were super welcoming and everyone wanted to have a coffee with me," she talked about the residents.
3 days ago
“It’s challenging, being an inventor,” Catherine Hettinger said.
3 days ago
The Facebook listing from is a contender for the weirdest rent agreement in history.
3 days ago
The "Bullet Train" actor made an unusual arrangement with the old widower.
3 days ago
He found the gold coin from the "world's most valuable shipwreck."
4 days ago