Russian state-backed hackers have once again targeted US government agencies, this time by stealing email correspondence between them and Microsoft. The breach of Microsoft’s systems has raised concerns about the security of sensitive information exchanged between the government and the tech giant.
According to US officials, the hackers may have stolen emails containing login information such as usernames and passwords. While there is no evidence yet that the hackers have successfully breached federal computer systems, the potential exposure of agency login credentials is considered an “unacceptable risk” by the US Cybersecurity and Infrastructure Security Agency (CISA).
In response to the breach, CISA has issued an emergency directive to civilian agencies potentially affected by the hacking campaign, urging them to strengthen their defenses. The hackers responsible for the breach have been linked to Russia’s foreign intelligence service, adding to the growing concerns about foreign cyber-espionage activities targeting US government agencies.
This latest incident comes on the heels of a similar breach involving Microsoft’s core software systems, which was used for follow-on attacks on Microsoft customers. The full extent and purpose of the hacking activity remain unclear, but experts believe the group responsible has a history of conducting intelligence gathering campaigns in support of the Kremlin.
As the investigation into the breach continues, Microsoft has been working with government agencies to mitigate the impact of the stolen emails. This latest foreign hacking campaign underscores the ongoing threat posed by state-backed hackers to US government agencies and the need for enhanced cybersecurity measures to protect sensitive information.