Microsoft announced that Russian state-backed hackers have recently used stolen information from the company's corporate email systems to access its source code repositories and internal systems. The hackers gained access to one of Microsoft's most valuable assets, the source code, which is the secret behind the functioning of its software programs. This poses a significant risk as hackers can use the source code for follow-on attacks on other systems.

Illustration: www.bleepingcomputer.com

The hacking group responsible for the breach has a history of conducting wide-ranging intelligence gathering campaigns in support of the Kremlin. They were also behind the infamous breach of several US agency email systems using software made by US contractor SolarWinds. In that case, the hackers had months of access to unclassified email accounts at various government departments. While the exact purpose of the recent hacking activity is unclear, experts believe the group is engaged in espionage on behalf of Russia.

Microsoft has stated that it has not found evidence of compromise in its customer-facing systems. However, the company acknowledges that the hackers may be using the stolen information to identify areas to attack and enhance their capabilities. This breach highlights the ongoing threat posed by state-backed hackers and the need for robust cybersecurity measures to protect sensitive information.

Illustration: techviral.net

US officials and private experts have reported that the Russian hackers responsible for the 2020 SolarWinds breach have continued their espionage campaigns by targeting widely used tech firms. By gaining access to these firms, they can accumulate valuable information and enhance their ability to launch future attacks. It is essential for both government agencies and private companies to remain vigilant and strengthen their cybersecurity defenses to counter these ongoing threats.