Microsoft takes blame after Chinese hackers breached U.S. officials

A Microsoft engineer’s corporate account was compromised, leading to a Chinese hack of hundreds of thousands of emails from top U.S. officials, including Commerce Secretary Gina Raimondo, U.S. Ambassador to China Nicholas Burns, and Assistant Secretary of State for East Asia Daniel Kritenbrink.

Microsoft said the hackers were able to extract a cryptographic key from the engineer’s account and use it to access email accounts that it should not have given them access to. The company has fixed the flaws that led to the key being accessible, but the incident has raised fresh concerns about Microsoft’s security practices.

Microsoft provided insights into how the hackers managed to exploit the situation, saying the extraction of a cryptographic key from the engineer’s account, enabling unauthorized access to email accounts that should have been off-limits.

The Chinese Embassy in Washington has denied the allegations, calling them “groundless narratives.”

The sources for this piece include an article in Reuters.

Microsoft takes blame after Chinese hackers breached U.S. officials

Top Stories

Researchers warn AI coding agents can be manipulated through hidden skill files

Amazon shuts down internal AI leaderboard after employees found ways to game the system

Google CEO pushes back on ‘Google Zero’ fears

Tesla insiders say they wouldn’t trust Full Self-Driving

Meta cuts jobs as it doubles down on AI

CISA exposed internal passwords and cloud keys in public repository

Related Articles

New ‘HTTP/2 Bomb’ attack can crash major web servers from a single computer

CISA exposed internal passwords and cloud keys in public repository

Canvas restores service after cyberattack disrupted schools and universities

Security researcher finds extensive tracking and security concerns inside White House mobile app

TND Newsdesk

TND Newsdesk

Jim Love