1. BITBILIHome
  2. Article

Chinese hackers exploit code flaw, steal US emails

173 views

TL;DR Breakdown

  • Chinese hackers reportedly exploited a flaw in Microsoft’s code to steal emails from U.S. government agencies and other clients.
  • The hackers used a Microsoft digital key, but how they obtained it remains unclear.
  • The breach started in May and has affected around 25 organizations, including the State and Commerce Departments.

Description

In a surprising breach of digital security, Microsoft, the Redmond, Washington-based tech giant, recently disclosed that cyber intruders of Chinese origin exploited a flaw in the company’s software code, culminating in the theft of emails from U.S. government agencies and several other clients. The severe incident has sent shockwaves through the cybersecurity industry and incited … Read more

In a surprising breach of digital security, Microsoft, the Redmond, Washington-based tech giant, recently disclosed that cyber intruders of Chinese origin exploited a flaw in the company’s software code, culminating in the theft of emails from U.S. government agencies and several other clients.

The severe incident has sent shockwaves through the cybersecurity industry and incited further tension in the already fraught China-U.S. relations.

A cyber espionage saga

The alleged Chinese cyber culprits reportedly procured a digital key belonging to Microsoft. The precise means through which they gained access to this vital digital instrument remains murky, casting a cloud of doubt over the company’s internal security measures.

Capitalizing on the acquired key, the hackers then exploited a “validation error” in Microsoft’s programming, thereby orchestrating a widespread cyber espionage campaign.

This furtive operation began as early as May and saw cyber assailants infiltrating around 25 organizations’ email accounts. Officials noted that the victims included two prominent U.S. government bodies, the State and Commerce Departments.

China, however, has vehemently denied any involvement in the hacking activities.

An international ripple effect

These cyber transgressions have attracted the attention of the international community.

During a diplomatic meeting in Jakarta, Secretary of State Antony Blinken expressed profound concern over any action targeting the U.S. government, American corporations, or citizens to his Chinese counterpart, Wang Yi.

He further asserted that the U.S. would not hesitate to hold the responsible parties accountable.

Simultaneously, the United Kingdom’s National Cyber Security Centre (NCSC), an offshoot of the GCHQ spy agency, stated it was working closely with Microsoft to understand the full extent of the fallout from this comprehensive hacking operation.

A spokesperson from the NCSC confirmed that their focus is on discerning the incident’s impact in the UK.

Microsoft responds amidst criticism

Following the public revelation of the breach, Microsoft has found itself in the eye of a storm, fielding criticism over its security practices. Many officials and legislators are urging the company to provide its highest tier of digital auditing, known as logging, free to all its customers.

In response to the flak, Microsoft affirmed in a recent statement its commitment to take the criticisms into account. It stated, “We are evaluating feedback and are open to other models,” highlighting that it remains “actively engaged” with U.S. officials on this critical issue.

Despite this admission, the circumstances surrounding the initial breach – particularly how the Chinese hackers procured Microsoft’s digital key – remain shrouded in mystery.

This absence of clarity has led to conjecture that Microsoft itself might have been hacked prior to the email thefts, thus underscoring the serious questions this incident raises about cybersecurity.

In summary, the unfolding narrative of Chinese hackers exploiting a code flaw to steal U.S. emails has left a stark reminder of the fragility of cybersecurity in the face of sophisticated hacking operations.

Amid escalating international tensions and questions over corporate responsibility, the cybersecurity industry must now grapple with the aftermath and the need for reinforced security measures to prevent future incidents.

Disclaimer: The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decision.

文章来源于互联网:Chinese hackers exploit code flaw, steal US emails

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年7月17日 07:39
Next 2023年7月17日 09:42

Related articles

  • Unlocking Optimism: $587M Worth of OP Tokens Set to Shake the Market

    TL;DR Breakdown Optimism is unlocking $587M worth of OP tokens, doubling the circulating supply and prompting concerns about downward price pressure. Early investors, including prominent venture capital firms, may sell their tokens, leading to potential selling pressure and impacting the OP token’s price. The Optimism (OP) token, the governance token of the Optimism network, is set to experience a significant unlocking event on May 31. With over 386 million tokens, worth $587 million, becoming available, concerns have arisen regarding potential downward pressure on the token’s price. This article explores the implications of the unlocking event, the involvement of early contributors and investors, and the broader context of token unlocks in the cryptocurrency market. Contents hide 1 The Unlocking Event and Price Pressure 2 Understanding Token Unlocks and Their Significance 3 Optimism’s Role as a Layer-2 Scaling Solution 4 Conclusion The Unlocking Event and Price Pressure The scheduled unlocking event on May 31 represents one of the largest unlocking events in 2023. Currently, the total circulating supply of OP tokens is only 335 million, meaning the unlock could effectively double the…

    Article 2023年6月2日

  • Lido Finance on Solana seeks $1.5 million in funding to sustain operations and growth

    TL;DR Breakdown The P2P team managing Lido Finance’s deployment on Solana has submitted a funding proposal to the Lido DAO community, seeking $1.5 million to sustain and expand the project on the network. The requested budget includes a development retainer, an annual marketing budget, and customer support funds. In return, the team aims to capture more than 1% of Solana’s staking market share and further develop the product. If the funding is not secured, the P2P team proposes to initiate a sunsetting process by February 2024, similar to what happened with Lido on Polkadot and Kusama, which would involve gradually discontinuing support for Lido on Solana. Description In a pivotal move, the P2P team managing Lido Finance’s deployment on Solana has submitted a funding proposal to the Lido DAO community. The team seeks $1.5 million over the next 12 months to sustain and grow the project, thereby avoiding the potential cessation of operations. Lido Finance’s comprehensive funding proposal The funding proposal outlines … Read more In a pivotal move, the P2P team managing Lido Finance’s deployment on Solana has submitted…

    Article 2023年9月6日

  • FTX troubles double with $500 AI sale suspension and hush money accusations 

    TL;DR Breakdown FTX filed a complaint against former regulatory and compliance officer Daniel Friedberg, who paid bribes to discourage personnel from speaking out about the exchange’s failing state. In one alleged ‘hush money’ instance, Friedberg allegedly retained the attorney of a whistleblower after paying them. Also, the sale of FTX’s $500 million stake in artificial intelligence startup Anthropic has been placed on hold. Description FTX has found itself caught in a swirling whirlwind of trouble akin to a digital tornado that shows no signs of abating. As if navigating the stormy seas of the crypto world wasn’t challenging enough, the failed crypto exchange now finds its woes doubling, with a suspension of $500 AI sales and the ominous whispers … Read more FTX has found itself caught in a swirling whirlwind of trouble akin to a digital tornado that shows no signs of abating. As if navigating the stormy seas of the crypto world wasn’t challenging enough, the failed crypto exchange now finds its woes doubling, with a suspension of $500 AI sales and the ominous whispers of hush money…

    Article 2023年7月1日

  • China president ditching G20 sparks diplomatic alarm

    Description As I’ve previously reported, China’s President Xi Jinping skipped the recent G20 summit. A move that has left political analysts and international leaders grappling to understand the larger implications. What’s evident, however, is that China’s retreat from this vital forum could reshape global diplomacy as we know it. Beijing’s Cold Shoulder: The New Delhi Standoff … Read more As I’ve previously reported, China’s President Xi Jinping skipped the recent G20 summit. A move that has left political analysts and international leaders grappling to understand the larger implications. What’s evident, however, is that China’s retreat from this vital forum could reshape global diplomacy as we know it. Beijing’s Cold Shoulder: The New Delhi Standoff It was evident from the onset that the G20 summit in New Delhi wouldn’t be business as usual for China. The understated arrival of Li Qiang, the Chinese premier, on a chartered flight, rather than the typical “special planes” signaled the nation’s muted presence. Li’s engagement at the summit was limited, a stark contrast to the proactive diplomacy China is known for. The key question that…

    Article 2023年9月12日

  • Kraken resolves issue with Ethereum funding gateway after brief delay in withdrawals

    TL;DR Breakdown Kraken, a cryptocurrency exchange, resolved a critical issue with its Ethereum funding gateway on July 30th, which could have caused significant transaction delays. The exchange’s prompt investigation and technical expertise led to an efficient resolution, minimizing disruption to users. After addressing the issue, Kraken updated its status page to inform users that all systems were operational, allowing Ethereum-related transactions to proceed without potential delays. Description On July 30, cryptocurrency exchange Kraken made an announcement regarding the resolution of a critical issue with the funding gateway of Ethereum, the world’s second-largest cryptocurrency. The problem, which had the potential to cause delays in deposits and withdrawals, prompted the company to investigate promptly to address the concerns of its users. Earlier that day, … Read more On July 30, cryptocurrency exchange Kraken made an announcement regarding the resolution of a critical issue with the funding gateway of Ethereum, the world’s second-largest cryptocurrency. The problem, which had the potential to cause delays in deposits and withdrawals, prompted the company to investigate promptly to address the concerns of its users. Earlier that day,…

    Article 2023年7月31日
TOP