Microsoft reports that Russian hacker group Nobelium, also known as Midnight Blizzard, persists in attempting to breach its internal systems and source code repositories. The group has increased the intensity of certain attack methods, including password sprays, in February.
Recent evidence indicates that the hacking group Midnight Blizzard (Nobelium) is using information exfiltrated from Microsoft’s corporate email systems for unauthorized access.
1. Access attempts include Microsoft’s source code repositories and internal systems.
2. The company has not found any evidence of compromise in its customer-facing systems hosted by Microsoft.
3. Midnight Blizzard seeks to access sensitive information, including shared data between Microsoft and its customers.
4. Microsoft is actively reaching out to and supporting affected customers in response to the ongoing cyber threat.
5. The attack’s intensity, such as password sprays, has surged, with a tenfold increase noted in February compared to January 2024.
6. Midnight Blizzard, also known as Cozy Bear or APT29, is affiliated with Russia’s foreign intelligence service SVR.
7. Russia, accused of multiple cyberattacks, continues its aggressive cyber campaigns amid global tensions, including the war in Ukraine.
