微软星期五说,黑客侵入了一台电脑其中一个客户服务代理和偷工数据,然后他们用于推出对客户的“高度目标”攻击。该公司将黑客集团视为Nobelium,同一个落后于去年的主要Solarwinds违规行为。
微软已经保护了电脑,黑客感染了信息窃取软件,并通知了受影响客户的“少数”,它在其安全响应中心网站上的周五邮政表示。
该公司发出警告影响Microsoft服务订阅者,路透社周五晚些时候,路透社报道,黑客在5月下半月举行了信息。新闻出口表示,盗窃数据包括结算联系信息以及客户支付的服务。黑客可以使用虚假电子邮件和电话呼叫中的这些基本数据作为网络钓鱼攻击的一部分,可以帮助他们获得更多敏感信息的访问。
CNET的最佳VPN服务2021
当您通过我们的链接购买时,我们可能会获得佣金。
<\/figure>\n <\/span>","topic":"","ttag":"","variant":"","viewguid":"","event":"","correlationId":"","_destCat":"http:\/\/myfinance.go2cloud.org\/aff_c?offer_id=124&aff_id=2&source=bestvpn&aff_sub=[subid_value]","productName":"ExpressVPN","position":1,"sku":"","dwLinkTag":"precap-as-widget|cybersecurity|dab293a4-bef1-4902-86b6-3a4565bc524d|image","formatType":"IMAGE","location":"LIST","articleId":"4bdfb0e8-a124-4576-9367-b37a5c31d9a7"}}" rel="noopener nofollow" target="_blank">
<\/figure>\n <\/span>","topic":"","ttag":"","variant":"","viewguid":"","event":"","correlationId":"","_destCat":"https:\/\/get.surfshark.net\/aff_c?offer_id=50&aff_id=1511&source=CNET&aff_sub=[subid_value]&aff_sub2=bestvpn","productName":"Surfshark","position":2,"sku":"","dwLinkTag":"precap-as-widget|cybersecurity|dab293a4-bef1-4902-86b6-3a4565bc524d|image","formatType":"IMAGE","location":"LIST","articleId":"4bdfb0e8-a124-4576-9367-b37a5c31d9a7"}}" rel="noopener nofollow" target="_blank">
<\/figure>\n <\/span>","topic":"","ttag":"","variant":"","viewguid":"","event":"","correlationId":"","_destCat":"https:\/\/go.nordvpn.net\/aff_c?offer_id=378&aff_id=307&source=CNET&aff_sub=[subid_value]&aff_sub2=bestvpn","productName":"NordVPN","position":3,"sku":"","dwLinkTag":"precap-as-widget|cybersecurity|dab293a4-bef1-4902-86b6-3a4565bc524d|image","formatType":"IMAGE","location":"LIST","articleId":"4bdfb0e8-a124-4576-9367-b37a5c31d9a7"}}" rel="noopener nofollow" target="_blank">
<\/figure>\n <\/span>","topic":"","ttag":"","variant":"","viewguid":"","event":"","correlationId":"","_destCat":"http:\/\/cnetpartner.go2cloud.org\/aff_c?offer_id=5&aff_id=1&aff_sub=[subid_value]&aff_sub2=bestvpn","productName":"ProtonVPN","position":4,"sku":"","dwLinkTag":"precap-as-widget|cybersecurity|dab293a4-bef1-4902-86b6-3a4565bc524d|image","formatType":"IMAGE","location":"LIST","articleId":"4bdfb0e8-a124-4576-9367-b37a5c31d9a7"}}" rel="noopener nofollow" target="_blank">
<\/figure>\n <\/span>","topic":"","ttag":"","variant":"","viewguid":"","event":"","correlationId":"","_destCat":" https:\/\/www.anrdoezrs.net\/click-3586864-14380881?url=https%3A%2F%2Fwww.ipvanish.com%2Fcnet%2F?sid=[subid_value]","productName":"IPVanish","position":5,"sku":"","dwLinkTag":"precap-as-widget|cybersecurity|dab293a4-bef1-4902-86b6-3a4565bc524d|image","formatType":"IMAGE","location":"LIST","articleId":"4bdfb0e8-a124-4576-9367-b37a5c31d9a7"}}" rel="noopener nofollow" target="_blank">
路透社报道,微软警告了对与结算联系人的沟通,并建议改变相关的密码和用户名,谨慎行事。该公司还敦促客户务必使用多因素身份验证来防止黑客。微软对违规的调查正在进行中,尚未发现任何客户都成功妥协。
科技巨头表示,它在诺贝尼尔集团调查了新活动的同时发现了突发。它表示,只有超过一半的活动是针对信息技术公司,其次是政府机构,然后是一小部分非政府机构,智库和金融服务公司。
Solarwinds黑客活动成为2020年12月的头条新闻。它使用了It管理公司太阳风(SolarWinds)的受污染软件,以及其他黑客手段,侵入了数千个组织,并进一步侵入了至少9个联邦机构和100家私营企业,其中包括微软(Microsoft)。
除了在博客上发表的文章外,微软没有对客户服务漏洞发表更多评论。
阅读更多:Solarwinds黑客:你需要知道什么