World News
China-based hackers have breached government and individual email accounts, Microsoft says
HONG KONG -- China called a Microsoft report that a China-based hacking group breached government-linked email accounts “disinformation,” saying Wednesday that the accusation was meant to divert attention from U.S. cyber activities.
In a blog post published Tuesday, Microsoft said the group, which it identified as Storm-0558, gained access to email accounts linked to 25 organizations, including Western European government agencies. The breach was detected weeks later when customers complained to Microsoft about abnormal mail activity.
“We assess this adversary is focused on espionage, such as gaining access to email systems for intelligence collection,” Charlie Bell, Microsoft's executive vice president of security, said in a separate Microsoft post.
A Washington Post report cited a statement from U.S. officials claiming Storm-0558 also breached unclassified email accounts linked to the U.S. government. A Chinese foreign ministry spokesman, Wang Wenbin, said the accusation was “disinformation” aimed at diverting attention from U.S. cyberattacks on China.
“No matter which agency issued this information, it will never change the fact that the United States is the world’s largest hacker empire conducting the most cyber theft,” Wang said in a routine briefing.
“Since last year, the cybersecurity organizations of China and other countries have issued many reports exposing the cyberattacks on China by the U.S. Government over a long period of time, but the U.S. has not made a response so far,” he said.
The Storm-0558 hackers used forged authentication tokens — pieces of information used to verify the identity of a user — required to access the email accounts, Microsoft said. It said it has dealt with the attack and informed affected customers.
Microsoft said it is working with the Department of Homeland Security and the Cybersecurity and Infrastructure Security Agency, among others, to guard against such attacks. It also said it would continue to monitor Storm-0558’s activities.
Last month, Google-owned cybersecurity firm Mandiant said suspected state-backed Chinese hackers broke into the networks of hundreds of public and private sector organizations globally by using a security hole in a popular email security tool.
Earlier this year, Microsoft said state-backed Chinese hackers were targeting U.S. critical infrastructure and could be laying the technical groundwork to disrupt critical communications between the U.S. and Asia during future crises.
-
World News58m ago
China Seeks to Bring a Booming Micro-Drama Industry Under Tighter Control
-
World News20h ago
Mass Graves of Hundreds Uncovered in Gaza Sound Alarm
-
World News20h ago
How King Charles Will Mark His Return to Public-Facing Duties in a Meaningful Way
-
World News1d ago
Head of Vietnam’s Parliament Resigns Amid Corruption Probe
-
World News1d ago
A Japanese Town, Frustrated by Overtourism, Is Blocking Its Instagram-Famous View of Mt. Fuji
-
World News1d ago
At TIME100 Gala, Honorees Toast to the People and Causes That Matter to Them
-
World News1d ago
TIME100 Honoree Motaz Azaiza Speaks on the Gaza Solidarity Encampments Taking Over U.S. Colleges
-
World News1d ago
Philippines Says ‘Foreign Actor’ Behind Deepfake of Marcos Urging Combat With China