Hackers believed to be linked to China have exploited vulnerabilities in Microsoft software to breach the email systems at over two dozen organizations, including some U.S. government agencies, as part of a suspected cyber-espionage campaign.
The Wall Street Journal reports that the hackers, identified as “Storm-0558,” exploited a security weakness in Microsoft’s cloud-computing environment to gain access to sensitive computer networks. This development is especially concerning for officials and security researchers, as it is seen as part of a larger espionage campaign that could have compromised valuable U.S. government information.
“Last month, U.S. government safeguards identified an intrusion in Microsoft’s cloud security, which affected unclassified systems. Officials immediately contacted Microsoft to find the source and vulnerability in their cloud service,” said Adam Hodge, spokesman for the White House National Security Council. He added, “We continue to hold the procurement providers of the U.S. government to a high security threshold.”