Microsoft: Hackers got further in than we thought

Microsoft: Hackers got further in than we thought

They viewed, but didn’t change, any of the source code of the dozens of US agencies they infiltrated.

Published on 7th January 2021

Microsoft said last Thursday in a blog post that hackers tied to a massive intrusion of dozens of US government agencies and private companies sneaked further into its systems than previously thought, although the intrusion doesn’t appear to have caused any additional harm. The company said the hackers were able to view some of the code underlying Microsoft software, but weren’t able to make any changes to it.

Microsoft played down any risk associated with the additional intrusion, noting that its software development relies on code sharing within the company, a practice called “inner source,” the AP reports. Likewise, Microsoft said it doesn’t rely on keeping program code secret as a security measure and instead assumes that adversaries have seen its code and uses other defensive measures to frustrate attacks.

The company said it found no evidence of hacker access to customer data and no indication that its systems were used to attack others. The hack began as early as March when malicious code was snuck into updates to SolarWinds software that monitors computer networks. Microsoft helped respond to the breach with cybersecurity firm FireEye, which discovered the hack when the security firm itself was targeted.

Cybersecurity experts and US officials suspect Russia was behind the hack. Microsoft said earlier this month that it identified more than 40 government agencies, think tanks, nongovernmental organizations, and IT companies infiltrated by the hackers. Russia has denied that it is to blame.

Source

The latest updates straight to your inbox

We just need a few details to get you subscribed

Health Checks

Inventory & Compliance

Cloud Readiness & Optimisation

Agreement & Audit Support

Learning

Looking for something specific?

Let's see what we can find - just type in what you're after

Wait! Before you go

Have you signed up to our newsletter yet?

It’s chock full of useful advice, exclusive events and interesting articles. Don’t miss out!

Cookie Notice

Our website uses cookies to ensure you have the best experience while you're here.