Midnight Blizzard' Breached HPE Email Months Before Microsoft Hack

26-Jan-24

Microsoft disclosed in a blog post last week that it had detected a Midnight Blizzard attack on its corporate systems on Jan. 12. The company said its investigation showed the attacker had likely breached its systems in November 2023 and has since then been exfiltrating information from email accounts belonging to senior leadership and employees in cybersecurity, legal, and other functions.


Midnight Blizzard gained initial access to Microsoft’s corporate network by using a common password spray attack to breach a legacy non-production test account. The threat actor then used that account’s permissions to access email accounts of interest at Microsoft.

Read More…