Immediate credential resets urged for Midnight Blizzard-hit federal agencies

The Cybersecurity and Infrastructure Security Agency has called for immediate authentication credential resets across all federal agencies that had their emails with Microsoft containing sensitive data compromised in an attack by Russian state-sponsored threat operation Midnight Blizzard, also known as APT29 and Cozy Bear, according to CyberScoop.

agency apt29 attack authentication bear blizzard called compromised cozy bear credential cyberscoop cybersecurity data emails email security federal federal agencies identity infrastructure infrastructure security microsoft midnight midnight blizzard russian security sensitive sensitive data sponsored state threat vulnerability management