Groups Similar Look up By Text Browse About



Similar articles
Article Id Title Prob Score Similar Compare
201299 ZDNET 2021-2-18:
Microsoft says SolarWinds hackers downloaded some Azure, Exchange, and Intune source code
1.000 Find similar Compare side-by-side
201233 ARSTECHNICA 2021-2-19:
Microsoft says SolarWinds hackers stole source code for 3 products
0.885 0.734 Find similar Compare side-by-side
201179 VENTUREBEAT 2021-2-18:
SolarWinds hackers downloaded some Microsoft source code for Azure, Exchange, and Intune
0.989 0.597 Find similar Compare side-by-side
201631 ZDNET 2021-2-19:
Microsoft readies Power Fx, a new Power Platform low-code language
0.004 0.440 Find similar Compare side-by-side
201023 ZDNET 2021-2-15:
Microsoft: SolarWinds attack took more than 1,000 engineers to create
0.417 Find similar Compare side-by-side
201292 ZDNET 2021-2-18:
SolarWinds attack hit 100 companies and took months of planning, says White House
0.409 Find similar Compare side-by-side
200950 VENTUREBEAT 2021-2-17:
Spectral exits stealth with $6.2 million to find costly security mistakes buried in code
0.391 Find similar Compare side-by-side
201112 ZDNET 2021-2-19:
Microsoft 365 adds new feature so remote staff with no internet don't lose access to apps
0.391 Find similar Compare side-by-side
201258 ZDNET 2021-2-18:
As Power BI aces Gartner's new Magic Quadrant, what's the story behind Microsoft's success?
0.006 0.377 Find similar Compare side-by-side
201064 ZDNET 2021-2-16:
Supply chain attacks are on the rise: Check your software build pipeline security
0.377 Find similar Compare side-by-side
201267 ZDNET 2021-2-17:
Microsoft starts removing Flash from Windows devices via new KB4577586 update
0.001 0.373 Find similar Compare side-by-side
200808 ARSTECHNICA 2021-2-16:
New type of supply-chain attack hit Apple, Microsoft and 33 other companies
0.362 Find similar Compare side-by-side
200867 THEVERGE 2021-2-15:
Here’s a first look at Microsoft’s xCloud for the web
0.346 Find similar Compare side-by-side
201015 ZDNET 2021-2-15:
Windows 10 preview: News in your taskbar expands further, Edge Legacy is replaced
0.344 Find similar Compare side-by-side
201304 ZDNET 2021-2-18:
Microsoft is cutting Windows 10 Enterprise LTSC support from ten years to five
0.341 Find similar Compare side-by-side
201562 TECHREPUBLIC 2021-2-22:
Microsoft Office at 30: It's popular because it's boring
0.340 Find similar Compare side-by-side
201473 THENEXTWEB 2021-2-22:
Microsoft is adding AI-powered text predictions to Word
0.339 Find similar Compare side-by-side
201130 THENEXTWEB 2021-2-19:
Microsoft is making an offline version of Office 2021
0.336 Find similar Compare side-by-side
201288 ZDNET 2021-2-18:
Masslogger Trojan reinvented in quest to steal Outlook, Chrome credentials
0.329 Find similar Compare side-by-side
201140 ZDNET 2021-2-19:
Microsoft Teams: Get ready for clearer sound on your meetings thanks to this audio upgrade
0.326 Find similar Compare side-by-side
200846 ZDNET 2021-2-17:
Singtel breach compromises data of customers, former employees
0.326 Find similar Compare side-by-side
201613 TECHREPUBLIC 2021-2-22:
New cloud security analysis finds default configurations and identity management are the biggest concerns
0.325 Find similar Compare side-by-side
201604 ZDNET 2021-2-21:
Facebook, Google, Microsoft, TikTok, and Twitter adopt Aussie misinformation code
0.325 Find similar Compare side-by-side
200763 VENTUREBEAT 2021-2-17:
Microsoft’s open source Dapr hits prime time to help developers embrace microservices
0.321 Find similar Compare side-by-side
201051 ZDNET 2021-2-15:
Microsoft Azure and Canonical Ubuntu Linux have a user privacy problem
0.319 Find similar Compare side-by-side

1

ID: 201299

URL: https://www.zdnet.com/article/microsoft-says-solarwinds-hackers-downloaded-some-azure-exchange-and-intune-source-code/

Date: 2021-02-18

Microsoft says SolarWinds hackers downloaded some Azure, Exchange, and Intune source code

Microsoft says it has completed its investigation into its SolarWinds-related breach. Microsoft's security team said today it has formally completed its investigation into its SolarWinds-related breach and found no evidence that hackers abused its internal systems or official products to pivot and attack end-users and business customers. The OS maker began investigating the breach in mid-December after it was discovered that Russian-linked hackers breached software vendor SolarWinds and inserted malware inside the Orion IT monitoring platform, a product that Microsoft had also deployed internally. In a blog post published on December 31, Microsoft said it discovered that hackers used the access they gained through the SolarWinds Orion app to pivot to Microsoft's internal network, where they accessed the source code of several internal projects. "Our analysis shows the first viewing of a file in a source repository was in late November and ended when we secured the affected accounts," the company said today, in its final report into the SolarWinds-related breach. Microsoft said that after cutting off the intruder's access, the hackers continued to try to access Microsoft accounts throughout December and even up until early January 2021, weeks after the SolarWinds breach was disclosed, and even after Microsoft made it clear they were investigating the incident. "There was no case where all repositories related to any single product or service was accessed," the company's security team said today. "There was no access to the vast majority of source code." Instead, the OS maker said intruders viewed "only a few individual files [...] as a result of a repository search." Microsoft said that based on the search queries attacker performed inside their code repositories, the intruders appeared to have been focused on locating secrets (aka access token) that they could be used to expand their access to other Microsoft systems. The Redmond company said these searches failed because of internal coding practices that prohibited developers from storing secrets inside source code. But beyond viewing files, the hackers also managed to download some code. However, Microsoft said the data was not extensive and that the intruders only downloaded the source code of a few components related to some of its cloud-based products. Per Microsoft, these repositories contained code for: All in all, the incident doesn't appear to have damaged Microsoft's products or have led to hackers gaining extensive access to user data.