Recent Email Hack at US Agencies May Have Broader Implications


Security logs are key to detect the use of forged tokens.

Hackers recently “breached cloud-based email accounts at US and European government agencies by using a Microsoft account-signing key to forge authentication tokens,” Bloomberg reports.

The problem was reported last month but security firm Wiz Inc. now says “that key may have also been able to help hackers infiltrate applications that include Teams, OneDrive, and Sharepoint.”

“Under pressure from US cybersecurity officials, Microsoft said it would provide free cloud security logs for all customers in the next few months” to help detect threats.

Read more at ITProToday.



Related content

comments powered by Disqus
Subscribe to our ADMIN Newsletters
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs

Support Our Work

ADMIN content is made possible with support from readers like you. Please consider contributing when you've found an article to be beneficial.