Chinese hackers breached US govt email accounts: Microsoft / Photo: © AFP
-
Keys into Melbourne third round with Sinner, Djokovic primed
-
Bangladesh launches campaigns for first post-Hasina polls
-
Stocks track Wall St rally as Trump cools tariff threats in Davos
-
South Korea's economy grew just 1% in 2025, lowest in five years
-
Snowboard champ Hirano suffers fractures ahead of Olympics
-
'They poisoned us': grappling with deadly impact of nuclear testing
-
Keys blows hot and cold before making Australian Open third round
-
Philippine journalist found guilty of terror financing
-
Greenlanders doubtful over Trump resolution
-
Real Madrid top football rich list as Liverpool surge
-
'One Battle After Another,' 'Sinners' tipped to top Oscar noms
-
Higher heating costs add to US affordability crunch
-
Eight stadiums to host 2027 Rugby World Cup matches in Australia
-
Plastics everywhere, and the myth that made it possible
-
Interim Venezuela leader to visit US
-
Australia holds day of mourning for Bondi Beach shooting victims
-
Liverpool cruise as Bayern reach Champions League last 16
-
Fermin Lopez brace leads Barca to win at Slavia Prague
-
Newcastle pounce on PSV errors to boost Champions League last-16 bid
-
Fermin Lopez brace hands Barca win at Slavia Prague
-
Kane double fires Bayern into Champions League last 16
-
Newcastle pounce on PSV errors to close in on Champions League last 16
-
In Davos speech, Trump repeatedly refers to Greenland as 'Iceland'
-
Liverpool see off Marseille to close on Champions League last 16
-
Caicedo strikes late as Chelsea end Pafos resistance
-
US Republicans begin push to hold Clintons in contempt over Epstein
-
Trump says agreed 'framework' for US deal over Greenland
-
Algeria's Zidane and Belghali banned over Nigeria AFCON scuffle
-
Iran says 3,117 killed during protests, activists fear 'far higher' toll
-
Atletico frustrated in Champions League draw at Galatasaray
-
Israel says struck Syria-Lebanon border crossings used by Hezbollah
-
Snapchat settles to avoid social media addiction trial
-
'Extreme cold': Winter storm forecast to slam huge expanse of US
-
Jonathan Anderson reimagines aristocrats in second Dior Homme collection
-
Former England rugby captain George to retire in 2027
-
Israel launches wave of fresh strikes on Lebanon
-
Ubisoft unveils details of big restructuring bet
-
Abhishek fireworks help India beat New Zealand in T20 opener
-
Huge lines, laughs and gasps as Trump lectures Davos elite
-
Trump rules out 'force' against Greenland but demands talks
-
Stocks steadier as Trump rules out force to take Greenland
-
World's oldest cave art discovered in Indonesia
-
US hip-hop label Def Jam launches China division in Chengdu
-
Dispersed Winter Olympics sites 'have added complexity': Coventry
-
Man City players to refund fans after Bodo/Glimt debacle
-
France's Lactalis recalls baby formula over toxin
-
Pakistan rescuers scour blaze site for dozens missing
-
Keenan return to Irish squad boosts Farrell ahead of 6 Nations
-
US Treasury chief accuses Fed chair of 'politicising' central bank
-
Trump rules out force against Greenland but demands 'immediate' talks
Chinese hackers breached US govt email accounts: Microsoft
Chinese-based hackers seeking intelligence information breached the email accounts of a number of US government agencies, computer giant Microsoft said.
"The threat actor Microsoft links to this incident is an adversary based in China that Microsoft calls Storm-0558," the company said in a blog post late Tuesday.
Microsoft said Storm-0558 gained access to email accounts at approximately 25 organizations including government agencies.
Microsoft did not identify any of the targets but a US State Department spokesperson said the department had "detected anomalous activity" and had taken "immediate steps to secure our systems."
"As a matter of cybersecurity policy, we do not discuss details of our response and the incident remains under investigation," the spokesperson said.
According to The Washington Post, the breached email accounts were unclassified and "Pentagon, intelligence community and military email accounts did not appear to be affected."
In the blog post, Charlie Bell, a Microsoft executive vice president, said "we assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection.
"This type of espionage-motivated adversary seeks to abuse credentials and gain access to data residing in sensitive systems," Bell said.
US National Security Adviser Jake Sullivan addressed the hack in an appearance on Wednesday on ABC's Good Morning America, and said it had been detected "fairly rapidly."
"We were able to prevent further breaches," Sullivan said.
"The matter is still being investigated, so I have to leave it there because we're gathering further information in consultation with Microsoft and we will continue to apprise the public as we learn more," Sullivan said.
Microsoft said Storm-0558 "primarily targets government agencies in Western Europe and focuses on espionage, data theft, and credential access."
The Redmond, Washington-based company said it had launched an investigation into "anomalous mail activity" on June 16.
"Over the next few weeks, our investigation revealed that beginning on May 15, 2023, Storm-0558 gained access to email accounts affecting approximately 25 organizations including government agencies as well as related consumer accounts," it said.
"They did this by using forged authentication tokens to access user email using an acquired Microsoft account consumer signing key," the company said. "Microsoft has completed mitigation of this attack for all customers."
US Senator Mark Warner, chairman of the Senate Select Committee on Intelligence, said the panel is "closely monitoring what appears to be a significant cybersecurity breach by Chinese intelligence."
"It's clear that the PRC is steadily improving its cyber collection capabilities directed against the US and our allies," Warner said in a statement.
O.Krause--BTB
