The Schwartz Report

Blog archive

Microsoft To Notify Targets of State-Sponsored Cyberattacks

Microsoft will inform customers of its online and cloud accounts when they are compromised or targeted by representatives of nation states, the company announced late last week. The company revealed its decision to notify Microsoft Account holders of state-sponsored attacks Dec. 30, in wake of several other leading providers doing so including Facebook, Twitter and Yahoo.

The announcement came following a report by Reuters that 1,000 Hotmail accounts were compromised in 2011 by representatives of the Chinese government. The accounts were used by Uighur and Tibetan leaders and diplomats from Japan and Africa, along with human rights lawyers and others, according to two former Microsoft employees who weren't identified by Reuters. Microsoft Spokesman Frank Shaw told the news service it had never confirmed the origin of those attacks. The report revealed that Microsoft hadn't informed the Hotmail users that their messages were collected.  

All Microsoft Accounts including Outlook.com (aka Hotmail) and OneDrive are covered by the new disclosure policy, said Scott Charney, corporate VP of Trustworthy Computing, in a blog post announcing the company's new disclosure policy.

"We're taking this additional step of specifically letting you know if we have evidence that the attacker may be 'state-sponsored' because it is likely that the attack could be more sophisticated or more sustained than attacks from cybercriminals and others," Charney wrote. "These notifications do not mean that Microsoft's own systems have in any way been compromised. If you receive one of these notifications it doesn't necessarily mean that your account has been compromised, but it does mean we have evidence your account has been targeted, and it's very important you take additional measures to keep your account secure."

Charney noted that Microsoft doesn't plan to disclose details about the attackers or their methods given the evidence collected could be sensitive. "But when the evidence reasonably suggests the attacker is 'state sponsored,' we will say so," according to Charney.

Charney advised customers can protect themselves by using two-step verification, watching for suspicious activity, refraining from opening suspicious e-mails or visiting questionable Web sites, using strong passwords and keeping software updated and patched.

Posted by Jeffrey Schwartz on 01/05/2016 at 11:58 AM


Featured

  • OneDrive Users To Get Storage Options, Plus New Personal Vault

    Microsoft announced a few OneDrive enhancements, including storage-option additions, plus a new "Personal Vault" feature for added security assurance.

  • Cloud Services Starting To Overtake On-Prem Database Management Systems

    Database management system (DBMS) growth is happening more on the cloud services side than on the traditional "on-premises" side, according to a report by Gartner Inc.

  • How To Replace an Aging Domain Controller

    If the hardware behind your domain controllers has become outdated, here's a step-by-step guide to performing a hardware refresh.

  • Azure Backup for SQL Server 2008 Available at Preview Stage

    Microsoft added the option of using the Azure Backup service to provide recovery support for SQL Server 2008 and SQL Server 2008 R2 when those workloads are hosted on Azure virtual machines.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.