Russian state hackers, known as the "Midnight Blizzard" group, compromised the email accounts of senior Microsoft staff using basic brute-force techniques. The compromised accounts did not have multi-factor authentication (MFA) enabled. Microsoft plans to implement a new internal cybersecurity program called the Secure Future Initiative in response to the incident. The state hacking group, believed to be linked to Russia's foreign intelligence service, did not access customer environments, production systems, source code, or AI systems. #Microsoft #Cybersecurity #MidnightBlizzard

https://www.infosecurity-magazine.com/news/russian-brute-force-senior/