Chinese hackers breached US govt email accounts: Microsoft / Photo: © AFP
-
Rip-offs at the petrol pump?
-
Shakira to wrap up world tour with Madrid residency
-
World gave Israel 'licence to torture Palestinians': UN expert
-
Colombia says 80 troops on crashed aircraft, many feared dead
-
France turns to 2027 race to succeed Macron
-
New Mercedes GLC electric
-
Namibia rejects Starlink licence request
-
Ex-model questioned in France over scout with Epstein links
-
UK sending air defence systems to Gulf: PM
-
Trump administration seeks to ease oil fears but industry wary
-
Blow to Italy's Meloni as she suffers referendum defeat
-
US deploys immigration agents to airports amid shutdown chaos
-
US, TotalEnergies reach 'nearly $1 bn' deal to end offshore wind projects
-
Spurs offer condolences to interim boss Tudor after father's death
-
Iran's true casualty figures unknown as internet blackout hampers monitors
-
Trump's ever-shifting positions on the war with Iran
-
Countries act to limit fuel price rise, cut consumption
-
'Stop, truck one, stop!': transcript of NY plane collision
-
Swiatek splits with coach Fissette after early Miami exit
-
WHO chief urges countries to complete pandemic agreement
-
Trump calls off Iran strikes and announces 'very good' talks
-
Russia, Vietnam advance plans for first nuclear power plant
-
New Trump envoy visits Honduras for organized crime-fighting partnership
-
No 'silver bullet' for video game age restrictions: PEGI chief
-
England coach McCullum survives review into Ashes drubbing
-
Mixed results for Lyme disease vaccine hit Valneva shares
-
Far-right French president no certainty despite rise of extremes
-
Trump tells AFP 'things are going very well' on Iran
-
Ukraine hits major Russian oil port near Finland
-
EU chief in Australia as trade talks enter 'last mile'
-
UK police probe attack on Jewish ambulances
-
Oil prices slide, European stocks rebound on Trump's Iran remarks
-
Trump announces 'very good' talks with Iran on ending war
-
Arsenal's White gets first England call-up since 2022
-
Greece train tragedy trial adjourned amid courtroom chaos
-
Tottenham face key call as relegation threat grows
-
German court rejects landmark climate case against BMW, Mercedes
-
Trump lifts Iran threat after 'very good' talks on ending war
-
Iran defies Trump Hormuz ultimatum with naval mine threat
-
African players in Europe: Awoniyi seals key win for lowly Forest
-
France ex-PM Lionel Jospin dies aged 88
-
Runway collision kills two pilots, shutters New York airport
-
Hodgkinson in 'shape of her life' with eye on Kratochvilova's record
-
Griezmann given go-ahead to talk with Orlando City
-
Mideast war threatens energy crisis worse than 1970s oil shocks
-
Pilot, co-pilot killed in runway collision at New York airport
-
Plane, fire truck collide on runway at New York's LaGuardia Airport
-
Russia's Max: The unencrypted super-app being forced on citizens
-
EU chief in Australia with eyes on trade deal
-
Asia champions Japan need 'different tools' to win World Cup - coach
Chinese hackers breached US govt email accounts: Microsoft
Chinese-based hackers seeking intelligence information breached the email accounts of a number of US government agencies, computer giant Microsoft said.
"The threat actor Microsoft links to this incident is an adversary based in China that Microsoft calls Storm-0558," the company said in a blog post late Tuesday.
Microsoft said Storm-0558 gained access to email accounts at approximately 25 organizations including government agencies.
Microsoft did not identify any of the targets but a US State Department spokesperson said the department had "detected anomalous activity" and had taken "immediate steps to secure our systems."
"As a matter of cybersecurity policy, we do not discuss details of our response and the incident remains under investigation," the spokesperson said.
According to The Washington Post, the breached email accounts were unclassified and "Pentagon, intelligence community and military email accounts did not appear to be affected."
In the blog post, Charlie Bell, a Microsoft executive vice president, said "we assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection.
"This type of espionage-motivated adversary seeks to abuse credentials and gain access to data residing in sensitive systems," Bell said.
US National Security Adviser Jake Sullivan addressed the hack in an appearance on Wednesday on ABC's Good Morning America, and said it had been detected "fairly rapidly."
"We were able to prevent further breaches," Sullivan said.
"The matter is still being investigated, so I have to leave it there because we're gathering further information in consultation with Microsoft and we will continue to apprise the public as we learn more," Sullivan said.
Microsoft said Storm-0558 "primarily targets government agencies in Western Europe and focuses on espionage, data theft, and credential access."
The Redmond, Washington-based company said it had launched an investigation into "anomalous mail activity" on June 16.
"Over the next few weeks, our investigation revealed that beginning on May 15, 2023, Storm-0558 gained access to email accounts affecting approximately 25 organizations including government agencies as well as related consumer accounts," it said.
"They did this by using forged authentication tokens to access user email using an acquired Microsoft account consumer signing key," the company said. "Microsoft has completed mitigation of this attack for all customers."
US Senator Mark Warner, chairman of the Senate Select Committee on Intelligence, said the panel is "closely monitoring what appears to be a significant cybersecurity breach by Chinese intelligence."
"It's clear that the PRC is steadily improving its cyber collection capabilities directed against the US and our allies," Warner said in a statement.
O.Krause--BTB
