Microsoft Hit by Phishing Attack

Monday, January 27, 2014 @ 04:01 PM gHale

The examples of companies, even protected firms, keep pouring out into the industry that show security need to be tighter than ever.

Take a look at Microsoft where legal documents ended up stolen during phishing attacks on its staff and company accounts.

Virtual Server Co. Phishing Victim
Going Phishing with Apple
Apps Lack of Security
Mobile Alert: Bug in Smartphone

The software giant has been hit repeatedly by the Syrian Electronic Army, with both Microsoft’s blogs and Skype accounts hit during the attacks.

The company just provided more insight into the effect of these attacks, with Adrienne Hall, general manager for Trustworthy Computing Group, saying in a blog post “We have learned that there was unauthorized access to certain employee email accounts, and information contained in those accounts could be disclosed. It appears that documents associated with law enforcement inquiries were stolen.”

“Recently, a select number of Microsoft employees’ social media and email accounts were subjected to targeted phishing attacks. This type of attack is not uncommon, and many companies grapple with phishing attempts from cybercriminals.”

She went on to say, “If we find that customer information related to those requests has been compromised, we will take appropriate action. Out of regard for the privacy of our employees and customers – as well as the sensitivity of law enforcement inquiries – we will not comment on the validity of any stolen emails or documents.”

While Microsoft is a top level company when it comes to security, Hall said the company will increase its efforts to beat cyber criminals, including better staff training and awareness of the threats they face.

“We continue to further strengthen our security,” she said. “This includes ongoing employee education and guidance activities, additional reviews of technologies in place to manage social media properties, and process improvements based on the findings of our internal investigation.”

Again, this incident just shows the issues facing busineses of all sizes with even a tech giant like Microsoft caught out by cyber attacks and phishing scams.

Leave a Reply

You must be logged in to post a comment.