all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft still unsure how hackers stole MSA key in 2023 Exchange attack

Add to bookmarks
April 4, 2024, 12:21 a.m. | Ionut Ilascu

BleepingComputer www.bleepingcomputer.com

The U.S. Department of Homeland Security's Cyber Safety Review Board (CSRB) has released a scathing report on how Microsoft handled its 2023 Exchange Online attack, warning that the company needs to do better at securing data and be more truthful about how threat actors stole an Azure signing key. [...]

attack azure board csrb cyber cyber safety cyber safety review board data department department of homeland security exchange exchange online hackers homeland security key microsoft msa key report review safety security signing the company threat threat actors u.s. department of homeland security warning

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Microsoft warns of "Dirty Stream" attack impacting Android apps 2 hours ago | www.bleepingcomputer.com
android android apps application apps +17
REvil hacker behind Kaseya ransomware attack gets 13 years in prison 3 hours ago | www.bleepingcomputer.com
attack hacker kaseya kaseya ransomware attack +12
Microsoft won't fix Windows 0x80070643 errors, manual fix required 4 hours ago | www.bleepingcomputer.com
automated environment errors fix +5
Cybersecurity consultant arrested after allegedly extorting IT firm 4 hours ago | www.bleepingcomputer.com
arrested confidential consultant cybersecurity +5
HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 19 hours ago | www.bleepingcomputer.com
advisory april aruba arubaos +17
DropBox says hackers stole customer data, auth secrets from eSignature service 19 hours ago | www.bleepingcomputer.com
access auth authentication breached +21
US govt warns of pro-Russian hacktivists targeting water facilities 23 hours ago | www.bleepingcomputer.com
critical critical infrastructure disrupt government +16
Panda Restaurants discloses data breach after corporate systems hack 1 day ago | www.bleepingcomputer.com
attackers breach compromised corporate +14
French hospital CHC-SV refuses to pay LockBit extortion demand 1 day, 1 hour ago | www.bleepingcomputer.com
demand extortion france french +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

DevSecOps Engineer

@ LinQuest | Beavercreek, Ohio, United States
View on infosec-jobs.com

Senior Developer, Vulnerability Collections (Contractor)

@ SecurityScorecard | Remote (Turkey or Latin America)
View on infosec-jobs.com

Cyber Security Intern 03416 NWSOL

@ North Wind Group | RICHLAND, WA
View on infosec-jobs.com

Senior Cybersecurity Process Engineer

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

Sr. Manager, Cybersecurity and Info Security

@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US
View on infosec-jobs.com
View more jobs