"Chinese cyberspies exploited a fundamental gap in Microsoft’s cloud, enabling them to conduct a targeted hack of unclassified U.S. email accounts — a troubling vulnerability officials said was discovered by the U.S. government. The security problem was discovered last month after the U.S. government identified a hole in Microsoft’s cloud security, which affected unclassified systems, according to the White House... Microsoft disclosed late Tuesday that it had mitigated an attack by “a China-based threat actor” [Storm-0558] that primarily targets government agencies in Western Europe and focuses on espionage and data theft... They did this by using forged authentication tokens to access user email using an acquired Microsoft account consumer signing key..." https://www.msn.com/en-us/news/tech...ent-email-through-microsoft-cloud/ar-AA1dKgTx
OK, so this was probably yet again a successful phishing attack, that allowed hackers to get access to some MS employee account. It's really time to make the switch to phishing-resistant MFA, because it's getting out of control.
