1. BITBILIHome
  2. Article

Chinese hackers exploit code flaw, steal US emails

21 views

TL;DR Breakdown

  • Chinese hackers reportedly exploited a flaw in Microsoft’s code to steal emails from U.S. government agencies and other clients.
  • The hackers used a Microsoft digital key, but how they obtained it remains unclear.
  • The breach started in May and has affected around 25 organizations, including the State and Commerce Departments.

Description

In a surprising breach of digital security, Microsoft, the Redmond, Washington-based tech giant, recently disclosed that cyber intruders of Chinese origin exploited a flaw in the company’s software code, culminating in the theft of emails from U.S. government agencies and several other clients. The severe incident has sent shockwaves through the cybersecurity industry and incited … Read more

In a surprising breach of digital security, Microsoft, the Redmond, Washington-based tech giant, recently disclosed that cyber intruders of Chinese origin exploited a flaw in the company’s software code, culminating in the theft of emails from U.S. government agencies and several other clients.

The severe incident has sent shockwaves through the cybersecurity industry and incited further tension in the already fraught China-U.S. relations.

A cyber espionage saga

The alleged Chinese cyber culprits reportedly procured a digital key belonging to Microsoft. The precise means through which they gained access to this vital digital instrument remains murky, casting a cloud of doubt over the company’s internal security measures.

Capitalizing on the acquired key, the hackers then exploited a “validation error” in Microsoft’s programming, thereby orchestrating a widespread cyber espionage campaign.

This furtive operation began as early as May and saw cyber assailants infiltrating around 25 organizations’ email accounts. Officials noted that the victims included two prominent U.S. government bodies, the State and Commerce Departments.

China, however, has vehemently denied any involvement in the hacking activities.

An international ripple effect

These cyber transgressions have attracted the attention of the international community.

During a diplomatic meeting in Jakarta, Secretary of State Antony Blinken expressed profound concern over any action targeting the U.S. government, American corporations, or citizens to his Chinese counterpart, Wang Yi.

He further asserted that the U.S. would not hesitate to hold the responsible parties accountable.

Simultaneously, the United Kingdom’s National Cyber Security Centre (NCSC), an offshoot of the GCHQ spy agency, stated it was working closely with Microsoft to understand the full extent of the fallout from this comprehensive hacking operation.

A spokesperson from the NCSC confirmed that their focus is on discerning the incident’s impact in the UK.

Microsoft responds amidst criticism

Following the public revelation of the breach, Microsoft has found itself in the eye of a storm, fielding criticism over its security practices. Many officials and legislators are urging the company to provide its highest tier of digital auditing, known as logging, free to all its customers.

In response to the flak, Microsoft affirmed in a recent statement its commitment to take the criticisms into account. It stated, “We are evaluating feedback and are open to other models,” highlighting that it remains “actively engaged” with U.S. officials on this critical issue.

Despite this admission, the circumstances surrounding the initial breach – particularly how the Chinese hackers procured Microsoft’s digital key – remain shrouded in mystery.

This absence of clarity has led to conjecture that Microsoft itself might have been hacked prior to the email thefts, thus underscoring the serious questions this incident raises about cybersecurity.

In summary, the unfolding narrative of Chinese hackers exploiting a code flaw to steal U.S. emails has left a stark reminder of the fragility of cybersecurity in the face of sophisticated hacking operations.

Amid escalating international tensions and questions over corporate responsibility, the cybersecurity industry must now grapple with the aftermath and the need for reinforced security measures to prevent future incidents.

Disclaimer: The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decision.

文章来源于互联网:Chinese hackers exploit code flaw, steal US emails

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月17日 07:39
Next 2023年7月17日 09:42

Related articles

  • Bitcoin miners celebrate as U.S. drops controversial Bitcoin tax proposal

    TL;DR Breakdown Bitcoin miners in the United States can heave a sigh of relief as a proposed tax on crypto mining failed to make its way into a bill aimed at raising the U.S. debt ceiling. The DAME tax faced significant opposition due to concerns that it could potentially lead to an increase in global emissions.  The news of the tax proposal’s exclusion from the bill came after Pierre Rochard, the vice president of research at Bitcoin miner Riot Platforms, noticed its absence.  Bitcoin miners in the United States can heave a sigh of relief as a proposed tax on crypto mining failed to make its way into a bill aimed at raising the U.S. debt ceiling. The tax proposal, known as the Digital Assets Mining Energy (DAME) excise tax, intended to levy a tax on crypto miners equivalent to 10% of their electricity costs in 2024, with plans to increase it to 30% in 2026. The DAME tax faced significant opposition due to concerns that it could potentially lead to an increase in global emissions. Critics argued that if…

    Article 2023年6月8日

  • SEC turns its attention to NFTs – The latest moves

    TL;DR Breakdown The SEC is intensifying its scrutiny on the crypto realm, especially NFTs. The adult animation Stoner Cats raised $8 million by selling NFTs, attracting SEC’s attention. Star-studded involvement included names like Mila Kunis, Ashton Kutcher, and Vitalik Buterin. Description While venture capitalists have begun to show less interest in the glowing allure of non-fungible tokens (NFTs), the U.S. regulatory arena, led by the SEC, is diving deep into the intricacies of the crypto industry. The recent spotlight has especially targeted the entanglement of digital assets with popular culture, exemplified by a peculiar case involving … Read more While venture capitalists have begun to show less interest in the glowing allure of non-fungible tokens (NFTs), the U.S. regulatory arena, led by the SEC, is diving deep into the intricacies of the crypto industry. The recent spotlight has especially targeted the entanglement of digital assets with popular culture, exemplified by a peculiar case involving animated stoned cats and Hollywood celebrities. The Stoner Cats Saga and the SEC’s Stance The curious tale begins with the Stoner Cats, an adult animation detailing…

    Article 2023年9月16日

  • Decentralized Exchange Cypher Protocol falls victim to $1 million security breach

    TL;DR Breakdown Cypher Protocol halts smart contract after $1 million exploit on Solana blockchain. The hacker stole 38,530 SOLANA tokens and $123,184 USDC from Cypher Protocol. NFT community appeals for stolen funds’ return, highlighting security challenges in DeFi space. Description Decentralized futures exchange Cypher Protocol, operating on the Solana blockchain, has been forced to halt its smart contract after falling victim to an estimated $1 million exploit. The incident, which took place on August 7, resulted in freezing the smart contract as a security measure. The Cypher team immediately informed its community about the security … Read more Decentralized futures exchange Cypher Protocol, operating on the Solana blockchain, has been forced to halt its smart contract after falling victim to an estimated $1 million exploit. The incident, which took place on August 7, resulted in freezing the smart contract as a security measure. The Cypher team immediately informed its community about the security breach. In response to the exploit, Cypher Protocol took proactive steps, attempting to negotiate with the hacker to return the stolen funds. Simultaneously, the team launched an…

    Article 2023年8月8日

  • Blockstream CEO wagers $1 million on a future Bitcoin prediction

    TL;DR Breakdown Blockstream CEO Adam Back has wagered $1 million on Bitcoin hitting $100,000 before its 2024 halving. Positive sentiments surround Bitcoin’s future. Description In a recent conversation on social media platform X, Adam Back, the CEO of Blockstream and an early pioneer of the cryptocurrency world, expressed his confidence in Bitcoin’s future by accepting a bet that it will surpass an all-time high of $100,000 before its upcoming halving in 2024. While Back’s prediction might seem bold, it’s … Read more In a recent conversation on social media platform X, Adam Back, the CEO of Blockstream and an early pioneer of the cryptocurrency world, expressed his confidence in Bitcoin’s future by accepting a bet that it will surpass an all-time high of $100,000 before its upcoming halving in 2024. While Back’s prediction might seem bold, it’s indicative of a growing bullish trend surrounding the cryptocurrency’s price among market commentators and analysts. Blockstream CEO’s bet will be settled by March 2024 The Blockstream CEO’s wager comes in the form of a bet with a pseudonymous user known as @Vikingobbitcoin. The…

    Article 2023年8月8日

  • Here is how Meta is addressing UK concerns

    TL;DR Breakdown Social media conglomerate Meta has proposed to restrict its use of data from other businesses’ ads for its Facebook Marketplace services to address the UK’s Competition and Markets Authority (CMA) competitive concerns. The proposal includes an opt-out feature for advertisers, preventing their data from being used to enhance Facebook Marketplace. The CMA is considering these commitments which, at this stage, it believes will alleviate competition worries. In a move that could potentially redefine its digital commerce landscape, social media conglomerate Meta has presented proposals to the UK’s Competition and Markets Authority (CMA) aimed at mitigating competitive concerns. The proposition involves restricting the usage of data gleaned from other businesses’ advertisements for its Facebook Marketplace services. Meta’s strategy to resolve competition issues The centerpiece of Meta’s proposal is an opt-out feature, which empowers advertisers to prevent their data from being employed to improve the functionality of the Facebook Marketplace classified ads platform. The company hopes this step would help to assuage the CMA’s concerns around data misuse. Michael Grenfell, the executive director of enforcement at the CMA, has welcomed…

    Article 2023年5月29日
TOP