A Microsoft logo adorns a building in Chevy Chase, Md., May 20, 2021.into its corporate email accounts was able to gain access to its core software systems, the company announced on Friday.
"In recent weeks, we have seen evidence that Midnight Blizzard is using information initially exfiltrated from our corporate email systems to gain, or attempt to gain, unauthorized access," Microsoft said in aon Friday. "This has included access to some of the company's source code repositories and internal systems."
As of Friday, the incident has "not had a material impact" on Microsoft's operations, the company stated in an"The Company has not yet determined that the incident is reasonably likely to materially impact the Company's financial condition or results of operations," the filing stated.Midnight Blizzard is apparently attempting to use "secrets" that it has found in the hack, according to Microsoft.
The volume of some aspects of the ongoing attack has intensified, increasing as much as 10-fold in February compared to January, Microsoft said. That includes "password sprays," in which a user uses a single common password against multiple accounts on the same application, the company said.