Search Mobile-alt Envelope Facebook Linkedin Youtube Bell

Microsoft to overhaul internal security practices after Midnight Blizzard attack

Search Mobile-alt Envelope Bell

Find out more below

Microsoft to overhaul internal security practices after Midnight Blizzard attack

After Microsoft disclosed a state-sponsored actor stole data from executives, experts are raising questions about its security capabilities.

Published on 23rd January 2024

In Brief

  • Microsoft plans to make significant changes to its internal security practices after disclosing a hack by the state-sponsored threat group Midnight Blizzard, which stole emails and other data from senior-level Microsoft executives and other employees, the company said Friday in a filing with the Securities and Exchange Commission.
  • The hackers compromised a legacy non-production test tenant account to gain access to the company, Microsoft said. The threat actor used the account’s permissions to reach a “very small percentage” of emails and attachments of senior executives and employees in the cybersecurity, legal and other departments.
  • The actor, formerly known as Nobelium, was behind the 2020 Sunburst attacks against SolarWinds and other companies. U.S. authorities raised alarms about Midnight Blizzard in December after the actor was found exploiting unpatched vulnerabilities in JetBrains TeamCity servers across the globe.

Insight

Security researchers and other analysts say the attack raises serious questions about the security of Microsoft products and whether the company is employing the same practices internally that it demands of customers.

Beginning in late November, the attackers used a password-spray attack to gain access to Microsoft’s environment. The attacks were not discovered until Jan. 12, and Microsoft said the attackers were seeking to find out what information Microsoft had on Midnight Blizzard.

Adam Meyers, SVP of counter adversary operations at CrowdStrike, noted that Microsoft has been the subject of serious attacks involving its cloud environment in recent years. This includes last year’s hack involving thousands of emails at the U.S. State Department and the Department of Commerce.

“I can tell you as somebody who works at a security company, our executives do not reside on legacy tenants with no multifactor authentication,” Meyers said.

Microsoft, in a blog post on Friday, admitted that it needs to rapidly update its internal security practices after it announced the Secure Future Initiative in November.

“We will act immediately to apply our current security standards to Microsoft-owned legacy systems and internal business processes, even when these changes might cause disruption to existing business practices,” the company said in the blog post.

Source

https://www.cybersecuritydive.com/news/microsoft-internal-security-midnight-blizzard/705174/

Search
Follow us on social media
Facebook Linkedin Youtube
Get the latest updates
Subscribe here
Copyright © EasySAM 2024

The latest updates straight to your inbox

We just need a few details to get you subscribed

More info

Health Checks

SAMplicity 365 Lite

A simple health check of what's being used across your Office 365 estate in this FREE, Microsoft backed and easy to setup review.

SAMplicity MOT

Just like you would with your vehicle each year, get an annual check up of your software asset management programme.

SAMplicity Process

Overwhelmed by the task of documenting the steps for a successful SAM programme? Get the experts in to help!

SAMplicity Tool Check

Concerned your SAM tools aren't covering your whole estate? Or on the look out for an entirely new tool? Get us in to assist.

Inventory & Compliance

SAMplicity Discovery

Not content with covering all things SAM related, we've teamed up with Capital to provide a comprehensive hardware asset management review.

SAMplicity One

A simple, one-time reconciliation of the software you have deployed versus the licence entitlement you own.

SAMplicity Plus

A regularly scheduled analysis of your organisation's estate, specifically adapted to your needs and budget.

Cloud Readiness & Optimisation

SAMplicity 365

A full appraisal of your Microsoft 365 setup and how best to optimise it through automated recommendations.

SAMplicity Cloud

An add-on to our SAMplicity One, MOT and Plus offerings, quickly diagnose your ability to migrate your resources to the cloud.

Agreement & Audit Support

SAMplicity Contract

In collaboration with law firm Addleshaw Goddard, ensure the legality of your SAM programme and get assistance with any contract disputes.

SAMplicity Response

Available as standard with SAMplicity Plus, ensure you're compliant if you're unexpectedly audited by a vendor.

Learning

SAMplicity Academy

We've teamed up with some of the forefront experts in licensing knowledge so you can teach yourself to be an expert too.

SAMplicity Training

Stumped by the continually evolving complexities of SAM? Join us for one of our comprehensive courses, either in-person or online.

View all services

Addleshaw Goddard

Block 64

Capital

Flexera

ITEXACT

Ivanti

License Dashboard

Licensing School

Raynet

Snow Software

TBSC

View all partners

What is SAM?

Services

Partners

Blog

Events

Knowledge Base

News

Contact Us

Login

Mobile-alt Envelope Facebook Linkedin Youtube Bell

Looking for something specific?

Let's see what we can find - just type in what you're after

Wait! Before you go

Have you signed up to our newsletter yet?

It’s chock full of useful advice, exclusive events and interesting articles. Don’t miss out!

Subscribe here

Cookie Notice

Our website uses cookies to ensure you have the best experience while you're here.

Accept
Reject