"Microsoft Mitigated an Attack by Chinese Threat Actor Storm-0558"

Microsoft mitigated an attack by a threat actor with ties to China, tracked as Storm-0558, which targeted customer emails. Storm-0558 threat actors have been observed conducting cyber espionage, data theft, and credential access attacks against government agencies in Western Europe. A customer reported the attack on June 16, 2023, but the investigation revealed that the attack began on May 15, 2023, when Storm-0558 gained access to the email accounts, impacting around 25 organizations, including government agencies and consumer accounts likely associated with these organizations. Using an acquired Microsoft account consumer signing key, the attackers forged authentication tokens to access user email. This article continues to discuss Microsoft's mitigation of a cyberattack by Storm-0558 threat actors.

Security Affairs reports "Microsoft Mitigated an Attack by Chinese Threat Actor Storm-0558"