Business Standard

China-based hackers breached Western Europe govt email accounts: Microsoft

The hackers carried out the breach by forging authentication tokens a piece of information used to verify the identity of a user required to access the email accounts

Microsoft

In a blog post published Tuesday, Microsoft said the group, which it identified as Storm-0558, focuses on acts such as espionage and data theft | Photo: Bloomberg

AP Hong Kong

Listen to This Article

A China-based hacking group has breached email accounts linked to government agencies in Western Europe, Microsoft Corp. says.

In a blog post published Tuesday, Microsoft said the group, which it identified as Storm-0558, focuses on acts such as espionage and data theft.

The group gained access to email accounts affecting about 25 organisations including government agencies and to accounts of individuals linked to these organisations, and had gone undetected for about a month until customers complained to Microsoft about abnormal mail activity.

We assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection, Charlie Bell, Microsoft's executive vice president of security, said in a separate Microsoft post.

 

The hackers carried out the breach by forging authentication tokens a piece of information used to verify the identity of a user required to access the email accounts. Microsoft has since dealt with the attack and informed affected customers.

Microsoft said it is working with the Department of Homeland Security and the Cybersecurity and Infrastructure Security Agency, among others, to guard against such attacks.

It also said it would continue to monitor Storm-0558's activities.

The Storm-0558 attack is the latest security breach discovered to have been carried out by China-based hackers.

Last month, Google-owned cybersecurity firm Mandiant said suspected state-backed Chinese hackers broke into the networks of hundreds of public and private sector organisations globally by using a security hole in a popular email security tool.

Earlier this year, Microsoft said state-backed Chinese hackers have been targeting US critical infrastructure and could be laying the technical groundwork for the potential disruption of critical communications between the US and Asia during future crises.

China says the US also engages in cyberespionage against it, hacking into computers of its universities and companies.

(Only the headline and picture of this report may have been reworked by the Business Standard staff; the rest of the content is auto-generated from a syndicated feed.)

Don't miss the most important news and views of the day. Get them on our Telegram channel

First Published: Jul 12 2023 | 2:23 PM IST

Explore News