The cat was let out of the bag, so to speak yesterday with Microsoft admitting that a single account had been breached by a notorious Hacker Group. All this news was at the end of a blog post yesterday, March 22, 2022. Microsoft basically says nothing to see here.
The Blog Post doesn’t focus so much on the Microsoft Incident, but rather gives a very lengthy overview of who/what the Hacker Group DEV-0537 is and ways to mitigate. How their Trademark apparently is paying employees of potential victims for their logon and vpn credentials. Now, at the bottom of the blog page Microsoft admits being hacked but says it was quickly rememedied. FYI… Microsoft refers to DEV-0537 as “The Actor.”
The following Statement was Provided, “This week, the actor made public claims that they had gained access to Microsoft and exfiltrated portions of source code. No customer code or data was involved in the observed activities. Our investigation has found a single account had been compromised, granting limited access.
Our cybersecurity response teams quickly engaged to remediate the compromised account and prevent further activity. Microsoft does not rely on the secrecy of code as a security measure and viewing source code does not lead to elevation of risk. The tactics DEV-0537 used in this intrusion reflect the tactics and techniques discussed in this blog.
Our team was already investigating the compromised account based on threat intelligence when the actor publicly disclosed their intrusion. This public disclosure escalated our action allowing our team to intervene and interrupt the actor mid-operation, limiting broader impact.
If you want to Read the Post yourself Click Here , tell me you think.0