According to Bloomberg, Microsoft also informed the US Agency for Global Media that some of its data may have been stolen. Security data and sensitive, personally identifiable information held by the agency is not believed to have been compromised. The Peace Corps was also notified of the Midnight Blizzard breach but told Bloomberg that it was able to “mitigate the vulnerability.” Microsoft hasn’t disclosed which customers have been impacted by the attack.
“As our investigation continues, we have been reaching out to customers to notify them if they had corresponded with a Microsoft corporate email account that was accessed,” Microsoft spokesperson Jeff Jones said to The Verge. “We will continue to coordinate, support, and assist our customers in taking mitigating measures.”
Microsoft had already announced it was overhauling its cybersecurity efforts last year before the Midnight Blizzard attack after a “cascade of security failures.” More recently, the software giant said it was making security its “top priority” as it attempts to rebuild the trust it’s already lost.
Published: 2024-07-04T10:00:59