* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Friday, August 8, 2025
Earth-News
  • Home
  • Business
  • Entertainment
    Themed Entertainment Design – Purdue Polytechnic

    Innovative Themed Entertainment Design: Creating Immersive Experiences

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    ‘Billie Jean’ – Hyde Park Herald

    The Enduring Magic Behind ‘Billie Jean’ Revealed

    Hank Hill returns to a changed world in new ‘King of the Hill’ episodes – New Haven Register

    Hank Hill Navigates a Bold New World in Thrilling New ‘King of the Hill’ Episodes

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Go-to entertainment: why gaming was made for the toilet – The Guardian

    Why Gaming Is the Ultimate Way to Pass Time in the Bathroom

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    MBU showcases student work at Occupational Therapy Technology Fair – WHSV

    Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

    BlackSky Technology Inc. (BKSY) Reports Q2 Loss, Lags Revenue Estimates – Yahoo Finance

    BlackSky Technology Inc. Reports Q2 Loss, Misses Revenue Targets

    Improved Technology Access: A Key to Closing the Healthcare Gap for African Americans – BIOENGINEER.ORG

    LMI Expands Technology Org, Appoints New Leaders – GovCon Wire

    LMI Expands Technology Team with Dynamic New Leadership Appointments

    Midland Innovation and Technology Charter School closing down – CBS News

    Midland Innovation and Technology Charter School Closes Permanently

    Future Trends In HR Technology – Dataconomy

    Future Trends In HR Technology – Dataconomy

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Themed Entertainment Design – Purdue Polytechnic

    Innovative Themed Entertainment Design: Creating Immersive Experiences

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    Rachael Leigh Cook and Brandon Routh ‘Happy to Have Found Each Other’ Following Respective Divorces – yahoo.com

    ‘Billie Jean’ – Hyde Park Herald

    The Enduring Magic Behind ‘Billie Jean’ Revealed

    Hank Hill returns to a changed world in new ‘King of the Hill’ episodes – New Haven Register

    Hank Hill Navigates a Bold New World in Thrilling New ‘King of the Hill’ Episodes

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Exclusive | Fox Takes Stake in IndyCar Owner Penske Entertainment – The Wall Street Journal

    Go-to entertainment: why gaming was made for the toilet – The Guardian

    Why Gaming Is the Ultimate Way to Pass Time in the Bathroom

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    MBU showcases student work at Occupational Therapy Technology Fair – WHSV

    Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

    BlackSky Technology Inc. (BKSY) Reports Q2 Loss, Lags Revenue Estimates – Yahoo Finance

    BlackSky Technology Inc. Reports Q2 Loss, Misses Revenue Targets

    Improved Technology Access: A Key to Closing the Healthcare Gap for African Americans – BIOENGINEER.ORG

    LMI Expands Technology Org, Appoints New Leaders – GovCon Wire

    LMI Expands Technology Team with Dynamic New Leadership Appointments

    Midland Innovation and Technology Charter School closing down – CBS News

    Midland Innovation and Technology Charter School Closes Permanently

    Future Trends In HR Technology – Dataconomy

    Future Trends In HR Technology – Dataconomy

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Microsoft issues new warning over Chinese cyber espionage

July 14, 2023
in Technology
Microsoft issues new warning over Chinese cyber espionage
Share on FacebookShare on Twitter

Nuthawut – stock.adobe.com

A newly uncovered Chinese espionage campaign exploited forged authentication tokens to access its victims’ email accounts, says Microsoft

Alex Scroxton

By

Alex Scroxton,
Security Editor

Published: 13 Jul 2023 12:45

A Chinese-state advanced persistent threat (APT) actor tracked as Storm-0558 hacked into email accounts at multiple government agencies, and was able to lay low for over a month until being discovered and kicked out by Microsoft, it has been revealed.

In a disclosure notice published on Tuesday 11 July to coincide with its monthly round of security updates, Microsoft revealed details of an investigation it undertook based on customer reporting, beginning on 16 June.

It found that beginning on 15 May, Storm-0558 accessed email data across 25 different organisations, and a smaller number of related personal email accounts from people associated with said organisations, using forged authentication tokens via an acquired Microsoft account consumer signing key.

Microsoft Security executive vice-president Charlie Bell said: “We assess this adversary [Storm-0558] is focused on espionage, such as gaining access to email systems for intelligence collection. This type of espionage-motivated adversary seeks to abuse credentials and gain access to data residing in sensitive systems.

“Microsoft’s real-time investigation and collaboration with customers let us apply protections in the Microsoft Cloud to protect our customers from Storm-0558’s intrusion attempts,” he said. “We’ve mitigated the attack and have contacted impacted customers. We’ve also been partnering with relevant government agencies like DHS CISA. We’re thankful they and others are working with us to help protect affected customers and address the issue. We’re grateful to our community for a swift, strong and coordinated response.

“The accountability starts right here at Microsoft,” said Bell. “We remain steadfast in our commitment to keep our customers safe. We are continually self-evaluating, learning from incidents, and hardening our identity/access platforms to manage evolving risks around keys and tokens.”

Token validation issue

HackerOne EMEA solutions architect Shobhit Gautam explained that the root cause of the intrusion was most likely a token validation issue.

“[This] was exploited by the actors to impersonate Azure Active Directory [AD] users and gain access to enterprise mail,” he said. “Since the MSA key and Azure AD keys are generated and managed separately, the issue would lie in the validation logic.

“For a successful exploitation, an attacker would need to gather information specific to the target – MSA Consumer Keys – and so would be fairly complicated to exploit. However, once in, the attacker would be able to have significant impact due to the ubiquity of the software,” said Gautam. “Exploiting vulnerabilities in the supplier network has become a key tactic in the attacker’s playbook.

“The best way to identify complex vulnerability risk is to take an outsider’s mindset that looks at how an attacker might make use of a variety of weaknesses to chain together to have a far more powerful impact. Government has been quick on the update of harnessing human intelligence to secure their defences.”

Mandiant chief analyst John Hultquist said: “Chinese cyber espionage has come a long way from the smash-and-grab tactics many of us are familiar with. They have transformed their capability from one that was dominated by broad, loud campaigns that were far easier to detect. They were brash before, but now they are clearly focused on stealth.

“Rather than manipulating unsuspecting victims into opening malicious files or links, these actors are innovating and designing new methods that are already challenging us. They are leading their peers in the deployment of zero-days and they have carved out a niche by targeting security devices specifically.

“They’ve even transformed their infrastructure – the way they connect to targeted systems,” he said. “There was a time when they would come through a simple proxy or even directly from China, but now they are connecting through elaborate, ephemeral proxy networks of compromised systems. It’s not uncommon for a Chinese cyber espionage intrusion to traverse a random home router. The result is an adversary much harder to track and detect.

“The reality is that we are facing a more sophisticated adversary than ever, and we’ll have to work much harder to keep up with them.”

This is the second time in a little under two months that Microsoft has gone public with accusations of coordinated cyber espionage campaigns by the Chinese state.

Towards the end of May, in collaboration with the UK’s National Cyber Security Centre and its counterparts in Australia, Canada, New Zealand and the US, it highlighted the nefarious activities of an APT actor dubbed Volt Typhoon, which targeted operators of critical national infrastructure, including sites on Guam, a Pacific island territory of the US that would be of immense military value in any Western response to a hypothetical Chinese invasion of Taiwan.

The Chinese government accused Microsoft and its government partners of being “extremely unprofessional” in response.

Read more on Hackers and cybercrime prevention


Russia-based actor exploited unpatched Office zero day

ArielleWaldman

By: Arielle Waldman


Exploitation of Barracuda ESG appliances linked to Chinese spies

AlexScroxton

By: Alex Scroxton


Chinese hackers targeting U.S. critical infrastructure

ArielleWaldman

By: Arielle Waldman


Alert over Chinese cyber campaign targeting critical networks

AlexScroxton

By: Alex Scroxton

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Computer Weekly – https://www.computerweekly.com/news/366544601/Microsoft-issues-new-warning-over-Chinese-cyber-espionage

Tags: issuesMicrosofttechnology
Previous Post

Synergy Research highlights how rise of the hyperscalers has hit on-premise datacentres

Next Post

Civil society groups call on EU to put human rights at centre of AI Act

Icing‐related injuries in polar bears (Ursus maritimus) at high latitudes – Laidre – 2024 – Ecology – ESA Journals

Chilling Consequences: How Icing Injuries Impact Polar Bears in the High Arctic

August 8, 2025
Carnegie Science Center launching new name in September – CBS News

Carnegie Science Center Unveils Exciting New Name This September

August 8, 2025
Petersburg youth explore Coho Creek for science education – Petersburg Pilot

Petersburg Youth Dive into Science with Hands-On Exploration of Coho Creek

August 8, 2025
Is there a path to healthier aging? What the latest research shows | Bodyworks – The Oklahoman

Is there a path to healthier aging? What the latest research shows | Bodyworks – The Oklahoman

August 8, 2025
MBU showcases student work at Occupational Therapy Technology Fair – WHSV

Discover the Most Innovative Student Projects at the Occupational Therapy Technology Fair

August 8, 2025
Official | Evann Guessand completes €35m Aston Villa move – Yahoo Sports

Official | Evann Guessand completes €35m Aston Villa move – Yahoo Sports

August 8, 2025
Trailer: Netflix Animation Welcomes Viewers to the Whimsical World of Dr. Seuss! – Animation Magazine

Trailer Unveils the Whimsical World of Dr. Seuss in Netflix Animation!

August 8, 2025
Spending on AI data centers is so massive that it’s taken a bigger chunk of GDP growth than shopping—and it could crash the American economy – Fortune

Spending on AI data centers is so massive that it’s taken a bigger chunk of GDP growth than shopping—and it could crash the American economy – Fortune

August 8, 2025
SPC Health Programs Showcase: Featuring Nursing, Radiography, and Surgical Services Degrees – St. Petersburg College

Explore Exciting Career Paths in Nursing, Radiography, and Surgical Services at SPC Health Programs Showcase

August 8, 2025
Top Trump officials discussed Epstein at White House meeting Wednesday night – CNN

Top Trump officials discussed Epstein at White House meeting Wednesday night – CNN

August 8, 2025

Categories

Archives

August 2025
MTWTFSS
 123
45678910
11121314151617
18192021222324
25262728293031
« Jul    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,132)
  • Ecology (760)
  • Economy (783)
  • Entertainment (21,659)
  • General (16,347)
  • Health (9,822)
  • Lifestyle (793)
  • News (22,149)
  • People (784)
  • Politics (792)
  • Science (15,996)
  • Sports (21,280)
  • Technology (15,763)
  • World (765)

Recent News

Icing‐related injuries in polar bears (Ursus maritimus) at high latitudes – Laidre – 2024 – Ecology – ESA Journals

Chilling Consequences: How Icing Injuries Impact Polar Bears in the High Arctic

August 8, 2025
Carnegie Science Center launching new name in September – CBS News

Carnegie Science Center Unveils Exciting New Name This September

August 8, 2025
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version