A cyber security official at the US State Department had noticed something unusual. China’s hackers had been able to steal or forge a digital key – the “cryptographic equivalent of crown jewels”, US officials said in a report. On June 26, 10 days after the US government discovered the Chinese hack, Microsoft launched an “all-hands-on-deck” investigation that ran overnight, uncovering …
In a significant cybersecurity breach, hackers supported by China managed to steal a crucial digital consumer key from Microsoft. The threat actor, identified as Storm-0558, used an acquired Microsoft account consumer key to generate tokens, granting them access to Outlook Web App and Outlook.com. The hackers used this digital skeleton key to infiltrate both personal and enterprise email accounts of …