Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Microsoft says it found malicious software in its systems

Reprints
Microsoft

(Reuters) — Microsoft Corp. said on Thursday it found malicious software in its systems related to a massive hacking campaign disclosed by U.S. officials this week, adding a top technology target to a growing list of attacked government agencies.

The Redmond, Washington, company is a user of Orion, the widely deployed networking management software from SolarWinds Corp. that was used in the suspected Russian attacks on vital U.S. agencies and others.

Microsoft also had its own products leveraged to attack victims, said people familiar with the matter. The U.S. National Security Agency issued a rare “cybersecurity advisory” Thursday detailing how certain Microsoft Azure cloud services may have been compromised by hackers and directing users to lock down their systems.

A person familiar with the hacking spree said the hackers made use of Microsoft cloud offerings while avoiding Microsoft’s corporate infrastructure.

Microsoft did not immediately respond to questions about the technique.

Another person familiar with the matter said the Department of Homeland Security does not believe Microsoft was a key avenue of fresh infection.

Both Microsoft and the DHS, which earlier on Thursday said the hackers used multiple methods of entry, are continuing to investigate.

 

 

 

Read Next

  • Microsoft could face stiff fine over alleged GDPR violation

    Dutch authorities are considering fining U.S.-based Microsoft Inc. for allegedly violating the European Union's General Data Protection Regulation, The Register reported citing sources. Microsoft allegedly gathered private data of 300,000 Dutch government workers from its Office ProPlus applications and stored the information on servers in the United States. Under the GDPR law, Microsoft could be fined tens of millions of dollars under the data privacy legislation.