Chinese hackers breached US govt email accounts: Microsoft / Photo: GERARD JULIEN - AFP
-
Man set himself alight in fatal Swiss bus fire: prosecutor
-
'This is me, very pretty': inside a Cambodian cyberscam site
-
Spain to deploy tool to track social media hate speech
-
Death toll from Ukrainian attack on Russia's Bryansk rises to 7: governor
-
'Legendary' Barbra Streisand to receive Honorary Palme d'Or at Cannes
-
Devine, Mooney top women's Hundred auction
-
British fintech Revolut gets full UK banking licence
-
US consumer inflation unchanged but price shocks from Iran war loom
-
Kneecap rapper scores new court victory as UK prosecutors lose appeal
-
IEA says members to release 400 mn barrels from oil reserves
-
Trump's 'racist hate speech' fuelling rights abuses: UN watchdog
-
Four killed in Ukraine as Moscow and Kyiv exchange drone strikes
-
India T20 hero dons disguise for unexpected train home
-
Russia says internet outages to last as long as 'necessary'
-
US consumer inflation unchanged at 2.4% year-on-year in February
-
Rana takes five wickets as Bangladesh crush Pakistan in ODI opener
-
Barca blunder: Fan ends up at wrong St James Park
-
Malaysia's JDT reach Asian Champions League quarter-finals
-
Oil jumps, stocks drop as Mideast war prolongs market volatility
-
French aid worker killed in DR Congo air strike
-
Germany, Japan to unblock oil reserves as G7 stands 'ready' to act
-
German defence giant Rheinmetall sees business boost from Mideast war
-
Malawi court dismisses 15-year lawsuit against Madonna charity
-
Trade ships hit as Iran threatens Gulf oil chokepoint
-
Airlines grapple with impact of Mideast war
-
Iran's new supreme leader injured but 'safe', says president's son
-
Thai navy says cargo ship attacked in Strait of Hormuz
-
Poland starts human trafficking probe into Epstein ring
-
Airlines in Asia hike fares as Mideast war raises fuel costs
-
UK govt to release first batch of Mandelson files
-
European football clubs score with stadium rebuilds
-
Trump said Iran 'welcome to compete' in World Cup, says Infantino
-
'No good choice': the Afghans forced to return from Iran
-
Asia stocks rise but oil resumes gains amid IEA supply report
-
Cathay says surcharge to rise as fuel prices jump during Mideast war
-
Cargo vessels hit as Iran threatens to close Gulf oil chokepoint
-
G7 energy ministers 'ready' to take 'necessary measures' on oil reserves
-
Punch the baby monkey isn't being bullied: Japan zoo
-
German defence giant Rheinmetall sees faster growth as Europe rearms
-
Fears of fuel shortage in Pakistan as tankers wait to fill up
-
Cathay Pacific expects to carry more passengers in 2026
-
Yak hack: Kyrgyz want the world to love their blonde bovine beauties
-
Iran women footballers evacuate from safe house in Australia
-
Shabby beauty: Inside Japan's oldest, defiant student dorm
-
Seoul says can deter threats from North if US weapons shifted to Mideast
-
Italy stun United States 8-6 in World Baseball Classic
-
New wave of Iran attacks as oil reserve release weighed
-
Politics meets football as China, Taiwan face off at Asian Cup
-
History offers Scots hope of ending losing run to Irish
-
Trump-Infantino 'bromance' tested by Middle East war
Chinese hackers breached US govt email accounts: Microsoft
Chinese-based hackers seeking intelligence information breached the email accounts of a number of US government agencies, computer giant Microsoft said.
"The threat actor Microsoft links to this incident is an adversary based in China that Microsoft calls Storm-0558," the company said in a blog post late Tuesday.
Microsoft said Storm-0558 gained access to email accounts at approximately 25 organizations including government agencies.
Microsoft did not identify any of the targets but a US State Department spokesperson said the department had "detected anomalous activity" and had taken "immediate steps to secure our systems."
"As a matter of cybersecurity policy, we do not discuss details of our response and the incident remains under investigation," the spokesperson said.
According to The Washington Post, the breached email accounts were unclassified and "Pentagon, intelligence community and military email accounts did not appear to be affected."
In the blog post, Charlie Bell, a Microsoft executive vice president, said "we assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection.
"This type of espionage-motivated adversary seeks to abuse credentials and gain access to data residing in sensitive systems," Bell said.
US National Security Adviser Jake Sullivan addressed the hack in an appearance on Wednesday on ABC's Good Morning America, and said it had been detected "fairly rapidly."
"We were able to prevent further breaches," Sullivan said.
"The matter is still being investigated, so I have to leave it there because we're gathering further information in consultation with Microsoft and we will continue to apprise the public as we learn more," Sullivan said.
Microsoft said Storm-0558 "primarily targets government agencies in Western Europe and focuses on espionage, data theft, and credential access."
The Redmond, Washington-based company said it had launched an investigation into "anomalous mail activity" on June 16.
"Over the next few weeks, our investigation revealed that beginning on May 15, 2023, Storm-0558 gained access to email accounts affecting approximately 25 organizations including government agencies as well as related consumer accounts," it said.
"They did this by using forged authentication tokens to access user email using an acquired Microsoft account consumer signing key," the company said. "Microsoft has completed mitigation of this attack for all customers."
US Senator Mark Warner, chairman of the Senate Select Committee on Intelligence, said the panel is "closely monitoring what appears to be a significant cybersecurity breach by Chinese intelligence."
"It's clear that the PRC is steadily improving its cyber collection capabilities directed against the US and our allies," Warner said in a statement.
L.Harper--AMWN
