GadgetBond

  • Latest
  • How-to
  • Tech
    • AI
    • Amazon
    • Apple
    • CES
    • Computing
    • Creators
    • Google
    • Meta
    • Microsoft
    • Mobile
    • Samsung
    • Security
    • Xbox
  • Transportation
    • Audi
    • BMW
    • Cadillac
    • E-Bike
    • Ferrari
    • Ford
    • Honda Prelude
    • Lamborghini
    • McLaren W1
    • Mercedes
    • Porsche
    • Rivian
    • Tesla
  • Culture
    • Apple TV
    • Disney
    • Gaming
    • Hulu
    • Marvel
    • HBO Max
    • Netflix
    • Paramount
    • SHOWTIME
    • Star Wars
    • Streaming
Add GadgetBond as a preferred source to see more of our stories on Google.
Font ResizerAa
GadgetBondGadgetBond
  • Latest
  • Tech
  • AI
  • Deals
  • How-to
  • Apps
  • Mobile
  • Gaming
  • Streaming
  • Transportation
Search
  • Latest
  • Deals
  • How-to
  • Tech
    • Amazon
    • Apple
    • CES
    • Computing
    • Creators
    • Google
    • Meta
    • Microsoft
    • Mobile
    • Samsung
    • Security
    • Xbox
  • AI
    • Anthropic
    • ChatGPT
    • ChatGPT Atlas
    • Gemini AI (formerly Bard)
    • Google DeepMind
    • Grok AI
    • Meta AI
    • Microsoft Copilot
    • OpenAI
    • Perplexity
    • xAI
  • Transportation
    • Audi
    • BMW
    • Cadillac
    • E-Bike
    • Ferrari
    • Ford
    • Honda Prelude
    • Lamborghini
    • McLaren W1
    • Mercedes
    • Porsche
    • Rivian
    • Tesla
  • Culture
    • Apple TV
    • Disney
    • Gaming
    • Hulu
    • Marvel
    • HBO Max
    • Netflix
    • Paramount
    • SHOWTIME
    • Star Wars
    • Streaming
Follow US
MicrosoftSecurityTech

Russian attackers breach Microsoft leadership email accounts

The SolarWinds hackers struck Microsoft, using password attacks and compromised accounts to access executive emails undetected for a period of weeks.

By
Shubham Sawarkar
Shubham Sawarkar's avatar
ByShubham Sawarkar
Editor-in-Chief
I’m a tech enthusiast who loves exploring gadgets, trends, and innovations. With certifications in CISCO Routing & Switching and Windows Server Administration, I bring a sharp...
Follow:
- Editor-in-Chief
Jan 19, 2024, 5:30 PM EST
Share
We may get a commission from retail offers. Learn more
Russian attackers breach Microsoft leadership email accounts
Photo: Alamy
SHARE

Microsoft revealed on Friday that a sophisticated nation-state cyber attack breached email accounts belonging to members of its senior leadership team in late November 2023. The attack was conducted by Nobelium, the same group behind the extensive SolarWinds espionage campaign uncovered nearly three years ago.

According to Microsoft’s Security Response Center, the breach was not the result of a vulnerability in Microsoft products or services. Rather, it started with a password spray attack that allowed the hackers to gain access to a non-production legacy account. They then leveraged the compromised account’s permissions to access a “very small percentage” of corporate email accounts used by Microsoft leaders and employees in cybersecurity, legal, and other functions. The hackers were able to exfiltrate some emails and documents before Microsoft detected the intrusion on January 12th, 2024.

Microsoft stated that the initial goal seemed to be gathering intelligence and information about the company itself, and it is still unclear exactly what or how much data may have been stolen over the weeks or months the attackers had access. As of now, Microsoft says there is no evidence that customer data or production systems were impacted.

The timing of the attack is notable, coming just days after Microsoft announced sweeping changes to its software security practices in response to major breaches of its Azure cloud platform. Over the past few years, Microsoft has found itself at the center of several high-profile cyber incidents – from SolarWinds to exploits in Exchange Server and cloud services that enabled access to thousands of corporate and government email systems.

This latest sophisticated attack aimed at accessing sensitive information highlights the growing threat and willingness of nation-state actors to target technology providers and their leadership. Even with extensive resources and security expertise, Microsoft was unable to detect Nobelium’s presence for over a month. As the company works to revamp its internal security processes, it also serves as a sobering reminder that no organization is immune from cyber espionage.

The incident reveals both the increasing sophistication of state-sponsored hacking and the challenges of detecting stealthy, patient attackers focused on quietly stealing confidential information. It remains to be seen whether Nobelium was able to access extremely sensitive strategy, plans or other intellectual property from Microsoft’s senior leaders during its weeks of access.

Microsoft will now need to assess the damage from the breach, determine what may have been taken, and implement enhanced monitoring to spot similar attacks more rapidly. However, the complexity of detecting and rooting out intruders that have already established a foothold presents major hurdles – even for the world’s largest software company.


Discover more from GadgetBond

Subscribe to get the latest posts sent to your email.

Leave a Comment

Leave a ReplyCancel reply

Most Popular

OpenAI rolls out ChatGPT for PowerPoint worldwide

How to watch the new Ghost in the Shell anime series

Xbox initiates massive restructuring: 1,600 roles cut

The Windows 11 taskbar is shrinking down and moving around

Beats launches heavy-duty ‘Power Pink’ cords starting at $19

Also Read
Side profile view of an ultra-thin Apple iPhone Air being held between fingers, showcasing its remarkably slim design with visible volume and power buttons along the metallic edge against a clean white background.

Leaker claims iPhone Air 2 will feature a significantly larger battery

Apple logo in Apple Store in Hong Kong

The physics of photography are catching up to the iPhone 18 Pro

Nothing Ear (3a)

Nothing Ear (3a) debuts with built-in audio recording for $99

Nothing Phone (4b)

Nothing officially unveils the Phone (4b) with enhanced Glyph Interface

Windows 11 logo with white Windows icon and ‘Windows 11’ text on a solid blue background.

How Windows 11 uses the cloud to save dead computers

Windows Recovery Environment (WinRE) Troubleshoot screen displaying recovery options, including Point-in-time restore, Reset this PC, Advanced options, and Cloud rebuild. The Cloud rebuild option is highlighted, indicating the feature to reinstall Windows from the cloud, removing all apps, settings, and personal files.

Microsoft adds direct-from-cloud OS recovery to Windows 11

Abstract blue gradient background featuring a centered rounded-square icon with a minimalist blue audio waveform symbol, representing a real-time voice or audio AI interface.

Faster, smarter, still mini: the new GPT-Realtime-2.1

“Guilty Creatures” book cover artwork and Julia Garner’s headshot

Apple TV announces ‘Guilty Creatures’ adaptation with all-star creative team

Company Info
  • Homepage
  • Support my work
  • Latest stories
  • Company updates
  • GDB Recommends
  • Daily newsletters
  • About us
  • Contact us
  • Write for us
  • Editorial guidelines
Legal
  • Privacy Policy
  • Cookies Policy
  • Terms & Conditions
  • DMCA
  • Disclaimer
  • Accessibility Policy
  • Security Policy
  • Do Not Sell or Share My Personal Information
Socials
Follow US

Disclosure: We love the products we feature and hope you’ll love them too. If you purchase through a link on our site, we may receive compensation at no additional cost to you. Read our ethics statement. Please note that pricing and availability are subject to change.

Copyright © 2026 GadgetBond. All Rights Reserved. Use of this site constitutes acceptance of our Terms of Use and Privacy Policy | Do Not Sell/Share My Personal Information.