"Email Hack Prompts Call for Microsoft to Make Security Logs Free"

There is criticism regarding Microsoft charging its cloud services customers additional fees to access security records after a China-based threat group compromised the email accounts of more than two dozen organizations, including US government agencies. The State and Commerce Departments are reportedly among the targets. The threat group responsible for the attacks, identified by Microsoft as Storm-0558, used forged authentication tokens to access Microsoft 365 (M365) accounts via Outlook Web Access and Outlook[.]com. Following the reveal of the attacks on July 11, Microsoft provided a more comprehensive account of the breach. Microsoft noted that the attacks had been mitigated for all customers and that the company was still investigating how the attackers got the forged tokens. This article continues to discuss the email hack that calls for Microsoft to make security logs free.

SC Media reports "Email Hack Prompts Call for Microsoft to Make Security Logs Free"