Microsoft has revealed that Kremlin-backed hackers, known as Midnight Blizzard, accessed its proprietary source code and internal systems during a breach in January. The hackers exploited a weak password in a test device connected to Microsoft’s network. The breach was initially thought to be limited to senior executives’ email accounts, but further investigation revealed that the hackers had accessed source code repositories and other internal systems. The stolen information is now being used in follow-on attacks, primarily against Microsoft customers. The volume of these attacks has increased tenfold since January, indicating a significant commitment of resources by the hackers.
Read more at: arstechnica.com